Solved

Citrix does not maintain remote connections

Posted on 2008-06-23
17
616 Views
Last Modified: 2008-08-24
Outlying clients log on to server at main location.  Clients maintain connectivity to server as long as the session is continued with activity by the remote user.  However, if that client's end user leaves the computer for any period of time, upon their return they find they've been disconnected.  This happens on several PC's at each of seven remote locations.
0
Comment
Question by:baleman2
  • 10
  • 4
  • 3
17 Comments
 
LVL 7

Expert Comment

by:dphantom
ID: 21849306
How are clients connecting remotely?  VPN, web interface?  Are there timeouts associated with these connection settings?
0
 

Author Comment

by:baleman2
ID: 21849439
Web interface - no timeouts.
0
 
LVL 14

Expert Comment

by:croberds
ID: 21850657
I would think it has to be a group policy.  The session settings are in the Computer Config | Admin Templates | Windows Components | Terminal Services | Sessions.

It could also be the screen saver settings are on but that will usually just go back to a logon screen rather than a full disconnect.
0
 

Author Comment

by:baleman2
ID: 21858989
Group Policy settings on the Server?
0
 
LVL 7

Expert Comment

by:dphantom
ID: 21859083
Your Active Ditrectory.  Any Group Policiies that may be affecting your users?  There is a whole section on Terminal Services settings in Group Policy with Windows 2003 AD.  Let us know if there are any as I agree with croberds that seems a good place to start.
0
 
LVL 14

Expert Comment

by:croberds
ID: 21859737
Most admins put them in AD.  What most including myself like to do is put your citrix servers inside their own OU and then set up a loopback policy.

If you inherited your situation the easiest way to track it down is to do a Resultant of Policy inside your AD for a user when they log in to the citrix server (Right click a user inside of AD, go to Tasks-->Resultant of Policy)
0
 

Author Comment

by:baleman2
ID: 21911635
Fellows:
After much network troubleshooting, we think we've finally found the problem.  Our ISP has their cable modem set to "100 Half" (their mistake) while our Fortigate router is set to "100 Full" - duplexing settings.  We are going to get on the same page tonight and get results tomorrow.
0
 

Author Comment

by:baleman2
ID: 21918002
Much ado about nothing concerning duplexing settings.  Both sides of the Fortigate, "internal" and "wan1" interface were set to 100 full as well as the cable modem from our ISP.  Still disconnecting; so, I will begin your troubleshooting suggestions.
0
What Is Threat Intelligence?

Threat intelligence is often discussed, but rarely understood. Starting with a precise definition, along with clear business goals, is essential.

 

Author Comment

by:baleman2
ID: 21922114
I have one more thing I'd like to try - if this is possible.  Outlying clients access all programs via an internet connection and a Citrix client.  Upon logon, a window with "published" software available for access is displayed.  Outlying clients then must pass through ISP's cable modem and my Fortigate router and a D-Link 10/100.1000 switch to get to the Citrix server.

In the building where the Citrix server is physically located, there is a LAN.  All clients on the LAN are members of the same domain managed by the Citrix server.  They also connect to the server via the internet to access published software on the server.

It seems to me another test of the "disconnect" issue (whether it is "Citrix Server" caused or "Network Hardware" caused) would be to have the CLIENTS ON THE LAN connect and use the published software by going straight to that software via drive mapping instead of the internet; in effect, bypassing the ISP's cable modem and my router altogether.  The only piece of hardware that would be utilized would be the D-Link switch.

If the CLIENTS ON THE LAN continue to experience disconnects, wouldn't we have proven that the problem has nothing to do with the hardware (cable modem and/or router) and then be able to concentrate our efforts on Citrix settings and configuration rather than hammering away at networking hardware issues.

Only problem I've got is I cannot find the path to the software that I want to access.

Please advise.
0
 
LVL 7

Expert Comment

by:dphantom
ID: 21924800
I doubt your local clients on the LAN where the Citrix server is located actually go out to the Internet and then come back in to access a published applicaiton.  What is more likely is the clients on the LAN using Web Interface to access published apps.

There is no drive mapping to access Citrix published applicaitons.  More than likely, you have a group policy issue somewhere or Citrix connection issue that is disconnecting your remote users.  I do not think this is a hardware issue.
0
 

Author Comment

by:baleman2
ID: 21954736
To croberds:
Start--> Settings-->Control Panel--> Administrative Tools--> Group Policy Management

From there, I have numerous line items that I can access.  The one most obvious to me is "Remote Facilities" which shows the 5 remote businesses that logon to this server.  Each of those businesses has a listing of the users who are located there.  If I double click on a user name, I have a "Sessions" tab available to me at the top of the screen.  There I find options to:
     1) End a disconnected Session:              Never
     2) Active Session Limit:                              Never
     3) Idle Session Limit:                                 Never
It would seem to me that the users should never be disconnected unless there is a "Group Policy" that is overriding these individual user settings.  However, I cannot find a "Group Policy" setting for Domain Users - which is the group that all these clients belong to.
 
0
 

Author Comment

by:baleman2
ID: 21969884
Everyone - I've still got the same problem that began this thread:  Remote users log on to a Citrix server.  As long as they are "active" while connected, they're session never terminates.  However, if they're "inactive" while connected to the Citrix server, their session is (at random - some users but not all) disconnected.  I've followed all suggestions shown on this thread, but nothing has resolved the issue.
Anything else to suggest?
0
 
LVL 14

Expert Comment

by:croberds
ID: 21974293
Hi baleman, sorry I have been on the road for 2 weeks with limited computer access.

To help me a little, what is your domain controller/active directory computer?  Is it Windows 2000? 2003?  What about your citrix server?  And what version of citrix do you have?

I have been answering assuming you have Windows 2003 as your DC but I am not so sure...

Ideally what you should do is have your citrix users go through a loopback policy which ignores the other domain policies, this makes it so when your users log into a citrix/terminal server they all follow the same rules, but you deny these rules for the domain admins so you can still get in and make the changes you need.  I think you may be getting multiple group policies for some users, or you may have a loopback policy setup already but cannot locate it.

Look here for info on how to set up a loopback policy:  http://www.msterminalservices.org/articles/Managing-Terminal-Services-Group-Policy.html and see if you can determine if you have one of these set up already.

If one of these is already set up It is in there (not from the Settings-->Control Panel-->Admin Tools-->Group Policy) that you need to find the Computer Config | Admin Templates | Windows Components | Terminal Services | Sessions.
0
 

Author Comment

by:baleman2
ID: 22002667
In an attempt to resolve the "disconnect" problem (if it is related to broadband width) I have moved both my "Citrix Server" (which we log on to) and "SqlServer" (which maintains our database) to a Fiber location.  We now 300meg up and 300meg down as a connection.  We're still getting disconnects after the outlying clients are inactive for 30 minutes or more.  We've checked all session "disconnect" and "timeout" settings on both servers.
0
 
LVL 14

Expert Comment

by:croberds
ID: 22002716
Are you using Citrix Access Gateway?  If so check here:  http://www.dabcc.com/article.aspx?id=5154

This on #5 caught my eye:  

If the logon point session time-out, mouse and keyboard inactivity time-out, and network activity time-out are all set with a value of 1440, the Secure Access Client disconnects after 23 minutes.
0
 

Author Comment

by:baleman2
ID: 22042208
I'm not using Citrix Access Gateway.
0
 

Accepted Solution

by:
baleman2 earned 0 total points
ID: 22259103
After weeks of trying all solutions posted by various experts, we have solved our problem by moving from CITRIX to TERMINAL SERVICES for our remote connections.  We still don't know what our problem was with Citrix; however, our "disconnect" issues no longer occur under Microsoft's Terminal Services.
0

Featured Post

Control application downtime with dependency maps

Visualize the interdependencies between application components better with Applications Manager's automated application discovery and dependency mapping feature. Resolve performance issues faster by quickly isolating problematic components.

Join & Write a Comment

After several days of searching and hunting for limited documentation, I wanted to share this guide to hopefully save someone the hassle of trying to figure this out on their own. I have tested this on Xendesktop 7.1 and PS 4.5 running simultaneous…
#SSL #TLS #Citrix #HTTPS #PKI #Compliance #Certificate #Encryption #StoreFront #Web Interface #Citrix XenApp
How to install and configure Citrix XenApp 6.5 - Part 1. In this video tutorial we have explained step by step installation of Citrix XenApp 6.5 Server on Windows Server 2008 R2 is explained in this video. We have explained the difference between…
This demo shows you how to set up the containerized NetScaler CPX with NetScaler Management and Analytics System in a non-routable Mesos/Marathon environment for use with Micro-Services applications.

705 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

15 Experts available now in Live!

Get 1:1 Help Now