I have a Citrix WI & CSG server sitting in a DMZ using the checkpoint firewall. I have enabled rules to allow SSL communication with this server across the internet which works fine.
The problem I have is that I can't communicate with the local LAN from the Citrix WI server which is sitting in the DMZ, so I can't login to Citrix as it can't communicate with the STA server which is sitting on the LAN.
I've enabled rules on the FW to allow traffic from the DMZ to theLAN but these don't appear to be working.
I can ping the private address of the FW fine but nothing beyond it.
If I telnet to the nokia box I can ping any address on the local LAN without problem.
Am I missing something? My knowledge of the checkpoint is very limited and we don't have any local knowledge.