I just installed WI on new server due to viruses on old server. Here is my setup....
XenApp and WI both sit behind a TZ190. The WI sits in a DMZ Zone on the TZ190. Keep in mind all was working with the NAT and Access Rules before I installed WI on a new server.
Default Website properties
TCP port 81
SSL port 444
Secure Gateway Configuration
Certification found: Citrix.myrapadocs.com
Secure Socket Layer (SSLv3) and TLSv1
Cipher suite: All
Configure inbound client connections
checked - Monitor all IPv4
TCP port: 443
No Network Interface list
No outbound traffic restrictions
Servers running the STA
Identifier: STA362CE7A8D924 FQDN: WIN08CITRIX (Which is the XenApp Server)
Protocols settings: Unchecked Secure traffic between the STA and Secure Gateway
TCP port: 8080
Use Default: Unchecked
No connection timeout
No Concurrent connection limits
No Logging exclusions
Checked - Indirect & Installed on this computer
TCP port: 81
Logging: Warning, errors, and fatel events
Site name: XenApp
Site URL: https://Citrix.myrapadocs.com:444/Citrix/XenApp
Farm Name: RAPA Citrix
XML Service: WIN08CITRIX
XML port: 8080
XML transport: HTTP
Authentication: At Web Interface
Available methods: Explicite
Resource type: Online
Available clients: Native clients
Specify Access method: IP Address: Default - Access method: Gateway Direct
Specify Gateway Settings: Address (FQDN) citrix.rapadocs.com
Checked: Enable session reliability
Unchecked: Request tickets from two STA
Secure Ticket Authority URLs: http://WIN08CITRIX:8080/Scripts/CtxSTA.dll
Bypassed failed server for: 1 Hour
I am able to log on to Citrix and see my Apps, however when I click on an APP I get Error -Unableto launch your application: Cannot connect to the Citrix XenApp Server.
SSL Error 4: Attempted to connect using the TLS V1.0|SSL v3.0 protocols. The server rejected the connection.
I am also getting Warning under Event Viewer - ID 125 - Source: Citrix Secure Gateway
SSL handshake from client failed.
Late last night I got Event ID: 30107
Site path: c:\inetpub\wwwroot\Citrix\
The Citrix server reported that they are too busy to provide access to the selected resource. This message was reported from the XML Service at address http://WIN08CITRIX:8080
I appreciate your help and support.