Improve company productivity with a Business Account.Sign Up

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 257
  • Last Modified:

Published Citrix application do not launch through ISA2004

Bought access to an external applications which i'm reaching from LAN (Behind ISA2004). Works fine. A user has to reach the same apps from home through a Microsoft VPN (configured on same ISA). Used same rules through firewall but:

- access to external is OK
-application set is available
- Application doesn't launch - hangs at "negotiating capabilities".

ISA logs doesn't give me clue.

ICA client is V8

Help me :-)
0
Balltown
Asked:
Balltown
  • 5
  • 4
1 Solution
 
Keith AlabasterEnterprise ArchitectCommented:
ICA client? Are you running a Citrix solution?

What rule have you put in to allow VPN users to access the Internet?
0
 
BalltownAuthor Commented:
We are running a Citrix solution.

It's running on specific ports and I created a Firewall rule on the ISA2004 that gives access to these ports.

It's working well from my LAN - from Internal to External

From VPN clients to External the scenery is as described above.

 
0
 
Keith AlabasterEnterprise ArchitectCommented:
OK, so what rule have you put in place for the VPN users to get to external?
0
Managing Security Policy in a Changing Environment

The enterprise network environment is evolving rapidly as companies extend their physical data centers to embrace cloud computing and software-defined networking. This new reality means that the challenge of managing the security policy is much more dynamic and complex.

 
BalltownAuthor Commented:
I created a Firewall policy, where I opened for TCP 7040 to 7044 Outbound and UDP 7040 Send. These ports are opened according to the informations I received from the vendor. It works fine from the LAN with this policy.

0
 
Keith AlabasterEnterprise ArchitectCommented:
and you have this rule applied  FROM VPN Clients TO external   as well as  FROM internal TO external?
0
 
BalltownAuthor Commented:
Yep
0
 
Keith AlabasterEnterprise ArchitectCommented:
OK, so open the isa gui, click monitoring - logging - click start query.

What do you see in the realtime log when they try and make a connection?
0
 
BalltownAuthor Commented:
Found the problem. Was testing the remote solution through a Homeoffice Linksys router. The router was the problem
0
 
Keith AlabasterEnterprise ArchitectCommented:
Thanks. Will change to a PAQ - Refund
0
 
Computer101Commented:
PAQed with points refunded (125)

Computer101
EE Admin
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Keep up with what's happening at Experts Exchange!

Sign up to receive Decoded, a new monthly digest with product updates, feature release info, continuing education opportunities, and more.

  • 5
  • 4
Tackle projects and never again get stuck behind a technical roadblock.
Join Now