Solved

Citrix Metaframe server Connectivity across a firewall

Posted on 2013-06-26
8
729 Views
Last Modified: 2013-06-27
This is Citrix Metaframe XP 1.3 (2003) server which has been and is still working fine. Yesterday, we connected to a new Internet provider, and thus modified the firewall configuration so that old external IP for Citrix server is replaced by the new external IP. (This is SonicWall; we updated Net Policies and Access Rules.)

I also ran ALDADDR /SET command on Citrix server to change old external IP with new.

From outside the firewall, I can telnet to port 1494 at the new external IP of Citrix server but applications don't show up when Client is launched. Firewall shows some TCP Citrix traffic passing thru but no UDP Citrix traffic.

From my past experierence at other companies, I know that a ICA file specifies TcpBrowserAddress in [WFClient] section, but at this company -- where I am new -- no ICA file was in use. I cannot find such a file on the Citrix server or on the client that was connecting before. (Users connect to the server and then are shown a few folders, each of which contain a group of applications.)

What else needs to be updated/changed on Citrix server (or client?) so users can connect to it at the new IP address? (Internal users obviously have no issues.) Thanks so much.


AK
0
Comment
Question by:Akulsh
  • 4
  • 4
8 Comments
 
LVL 25

Expert Comment

by:Tony1044
ID: 39278008
What are the users using to connect to the MF servers? An old Program Neighbourhood?

Is it possible they have the public IP address hard-coded into the ICA browser address box (now I'm going from memory there and it's been a long time so it might be called soment slightly different).
0
 
LVL 3

Author Comment

by:Akulsh
ID: 39278754
Yes, they are using Program Neighborhood.

How can IP address be hard coded in that client? We have also tried from a new workstation. Same results, so that is not likely the case.

Any other idea. Thanks.
0
 
LVL 25

Expert Comment

by:Tony1044
ID: 39279241
Ah here we go. Dug out some old instructions:

Click Server Location

Deselect Use Default

Click Add

Add a Citrix server by name (if in DNS) or IP address*

Click OK

*Are you using a public DNS and has it propagated yet with with the new IP?
0
 
LVL 3

Author Comment

by:Akulsh
ID: 39279968
We specify IP of the firewall in Citrix Client, which gets redirected to the Citrix server by the firewall. Thanks.
0
Threat Intelligence Starter Resources

Integrating threat intelligence can be challenging, and not all companies are ready. These resources can help you build awareness and prepare for defense.

 
LVL 25

Accepted Solution

by:
Tony1044 earned 400 total points
ID: 39280429
And from a client can you telnet onto the MF server on TCP 1494?

Have you checked any other ports?

http://support.citrix.com/article/ctx184502
0
 
LVL 3

Author Comment

by:Akulsh
ID: 39280541
The problem got fixed by a co-worker while I was working on something else. He modified a setting on the firewall. If your article talks about that setting, then I will give you credit. Otherwise I will like to delete this question. Will know tomorrow. Thanks again.
0
 
LVL 3

Author Comment

by:Akulsh
ID: 39282269
"Ports Required to be Open for Connectivity Through Firewalls and Routers" section of your link was helpful. Thanks.
0
 
LVL 25

Expert Comment

by:Tony1044
ID: 39282295
You're more than welcome. Glad it got fixed and thank you for the points.
0

Featured Post

Why You Should Analyze Threat Actor TTPs

After years of analyzing threat actor behavior, it’s become clear that at any given time there are specific tactics, techniques, and procedures (TTPs) that are particularly prevalent. By analyzing and understanding these TTPs, you can dramatically enhance your security program.

Join & Write a Comment

#Citrix #Internet Explorer #Enterprise Mode #IE 11 #IE 8
CITRIX XENAPP 6.5 FARM CUSTOM POLICY - CHANGE MANAGEMENT WINDOW REBOOT SCHEDULE
How to install and configure Citrix XenApp 6.5 - Part 1. In this video tutorial we have explained step by step installation of Citrix XenApp 6.5 Server on Windows Server 2008 R2 is explained in this video. We have explained the difference between…
This demo shows you how to set up the containerized NetScaler CPX with NetScaler Management and Analytics System in a non-routable Mesos/Marathon environment for use with Micro-Services applications.

708 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

11 Experts available now in Live!

Get 1:1 Help Now