Solved

Citrix 3 weird connectivity issue

Posted on 2014-04-30
6
258 Views
Last Modified: 2014-07-01
We have an End of Life installation of Citrix 3 that we can't upgrade yet. We are having a weird issue. Users in different locations in Tennessee cannot get their desktops to load. They will authenticate but not see icons. Users in Kentucky have no problem. KY can log on as TN users and get in with no problems.

I don't anticipate someone here figuring this out, necessarily, but can someone direct me to diagnostics or log files that might show timeouts, etc., for individual user sessions? Thanks for any help.

Servers are Windows Server 2008 and desktops are Windows 7.
0
Comment
Question by:jconklin-ansinc-net
  • 3
  • 2
6 Comments
 
LVL 23

Expert Comment

by:Dirk Kotte
Comment Utility
don#t know "citrix 3"
i think you use XenApp 5?
do you have a central installation and users access this from different locations or do you have a distributed farm?
all users use the same webinterface?

the error is fixed to the TN location (and not the TN users)?
do you have a vpn between the locations?

What changes are made before the problems starting?
0
 

Author Comment

by:jconklin-ansinc-net
Comment Utility
Sorry taking so long to answer. It's a central installation. Users access from different locations. Users all log in from a Citrix icon, all configured the same. The error is not fixed to 1 location, that is the weird part- it doesn't work across the MPLS and it doesn't work for users at home or connected via wireless hot spot. But the same login credentials work fine from on the LAN. The users experiencing the trouble don't have a problem logging in, and the login script starts, but after that the screen shows no icons. Running Wireshark from the LAN I see TPKT protocol packets that is apparently related to the Citrix encapsulation. These packets seem to originate from the server. A capture from a TN machine never shows these packets.

I'm not aware of any changes made prior to this starting.
0
 
LVL 23

Expert Comment

by:Dirk Kotte
Comment Utility
as i knew TPKT is not used by Citrix connections at any version.
Some other applications may use this protocol.
possible the problem users connect to a data-source or file-system using this protocoll and with connection-problems the session/desktop don't start completely.

do i understand you correct?
- the user is able to start the session but the screen keeps empty?
- "the screen shows no icons" do you publish the desktop or single apps?
- does the user see something (like START Button)?
- can you see the usersession within the TASKMANAGER at the server?
- see the user his session within the connection center?

only users from TN MPLS, TN WLAN, TN-Home-users get this problems?

which connection is made to TN?
- you have a WAN connection/VPN to TN?

if users from TN comes from the internet...
- use these users different entry than KY users? (are there more than one Webinterfaces/netscaler/CSG)
- use the the external users some kind of VPN (also netscaler ssl-vpn?)

enough questions ... if the logon/session starts a little bit you can enable logon debugging. possible there are hints:
http://support.microsoft.com/kb/109626/en

take a look to the eventlog, there should be some hints why the usersession don't start
0
Threat Intelligence Starter Resources

Integrating threat intelligence can be challenging, and not all companies are ready. These resources can help you build awareness and prepare for defense.

 
LVL 14

Expert Comment

by:joharder
Comment Utility
Your reference to Citrix encapsulation may be due to Session Reliability, which encapsulates user sessions within TCP port 2598.  Perhaps this port is blocked?

If you are not using SSL for your user connections (Secure Gateway, Access Gateway, etc.), then you likely have a port issue.  Your safest bet is to incorporate a gateway and SSL connection.
0
 

Accepted Solution

by:
jconklin-ansinc-net earned 0 total points
Comment Utility
We ended up upgrading to XenApp 7.5 and stopped troubleshooting this particular issue. The good news is they're up and happy, but we didn't get to the bottom of this one.
0
 

Author Closing Comment

by:jconklin-ansinc-net
Comment Utility
The problem is no longer an issue because of the upgrade.
0

Featured Post

Are end users causing IT problems again?

You’ve taken the time to design and update all your end user’s email signatures, only to find out they’re messing up the HTML, changing the font and ruining the imagery. What can you do to prevent this? Find out how you can save your signatures from end users today.

Join & Write a Comment

#Citrix #Internet Explorer #Enterprise Mode #IE 11 #IE 8
A safe way to clean winsxs folder from your windows server 2008 R2 editions
This tutorial will walk an individual through the steps necessary to enable the VMware\Hyper-V licensed feature of Backup Exec 2012. In addition, how to add a VMware server and configure a backup job. The first step is to acquire the necessary licen…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…

728 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

9 Experts available now in Live!

Get 1:1 Help Now