Existing Citrix clients on Inside, can connect to a Citrix Server on the outside. This is an older CITRIX version, been running for over 3 years without issues.
New installs of the client fail, seem the Citrix license key is not transfering. I did some captures, traffic flows both ways, a reset packet is sent from the Citrix Server around packet 60. A cleaned configuration is attached. Anyone see anything similar to this?
Thank you for this information. We have since found that there is an issue on the Citrix Servier, the outside agency administrator was able to duplicate the issue and is working a resolution.All communication to/from the Citrix was on port 1494, so I don't think this bug would have been the issue if it was on the firewall.
In regards to the xlate and conn timeouts, our traffic levels are fairly low, and because of some legacy main-frame connectivity, needed a large timeout to keep from hanging sessions on these mainframes.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...