CAG ports

What ports need to opened between a Citrix Access Gateway (CAG) on a DMZ and the internal network (LDAP/Active Directory servers, Web Interface servers, XenApp servers, etc).

What needs to opened between the internal network to the CAG?
ENTPFAsked:
Who is Participating?
 
dassbossConnect With a Mentor Commented:
Ports_CAG1.jpg illustrates the firewall port requirements for normal operation when the Access Gateway is deployed in a DMZ.

Ports_CAG2.jpg illustrates the firewall port requirements If a route does not exist from the LAN to the DMZ subnet, it becomes necessary to create a second Access Gateway virtual server for the purpose of the Web Interface callback.

Port_Rules.jpg is a firewall rules table.
Ports-CAGEE1.jpg
Ports-CAGEE2.jpg
Port-Rules.jpg
0
 
woodmouseCommented:
XML and Citrix - 81 and 1494.
These would be the default values.

The XenApp servers would take care of the rest, to authenticate AD

0
 
dassbossCommented:
Have a Look at this PDF you will get answer for all..
Citrix-TCP-Ports.pdf
0
 
dassbossCommented:
In responce to your question: "What needs to opened between the internal network to the CAG?" the answer would be TCP port 443 from Web interface to the CAG.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.