Xenapp server is on dmz1
Server1 is on dmz2
Users inside the network need to be able to RDP to server1 via a published citrix Icon on their web interface site.
Assume firewall rules are allowed for users to reach the xenapp server. Assume dmz1 and dmz2 can only talk to each other after being permitted by an ACL.
Would it just be RDP port 3389 that would need to be allowed between the xenapp server and dmz1 in order to get a rdp icon published?