Hi All, I am trying to fix our Citrix Gateway. We have two Citrix Server(XenApp 6.5) on the 88.8.0.0/16(LAN1) subnet and works great.
We also have a Citrix Secure Gateway on the DMZ on a 99.9.0.0/16 subnet.
If I move the CSG from DMZ to LAN1everything works as intended.
By going to
https://CSG/ I get the web login portal and able to log in and launch applications.
When the CSG is on the DMZ it does not work. I get to the login portal but that is about it. It does not authenticate any user.
I tried setting up access rules on the Sonicwall to allow traffic from CSG to Citrix Server over Port 8080 and 443.
Then as a Test I allowed all traffic on all ports to hit the citrix servers. I check the packet monitor on sonicwall and it shows it passing traffic to the Citrix Servers but still not able to login.
https://docs.citrix.com/en-us/legacy-archive/downloads/xenapp-6-5.pdf
Go to page 636 where it starts on using the CSG in a DMZ. In both examples, it shows that the Web Interface is also in a DMZ.