Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
430
Views
0
Helpful
3
Replies

Site to Site VPN and Citrix Metaframe Server

tony.hanson
Level 1
Level 1

‎08-28-2006 01:11 PM - edited ‎02-21-2020 02:35 PM

We have a client who's using Cisco Pix to do site to site VPN with there remote sites. They are trying to connect to a Citrix Server and are having an issue connecting to Citrix. They can access any other server on the Head End site except for the Citrix Server. I can ping the server and remote into it, but cannot connect to the server with Citrix. Any ideas?

Labels:
0 Helpful
3 Replies 3

spremkumar
Level 9
Level 9

‎08-30-2006 04:30 AM

Hi Tony

Have you allowed the ports being used for Citrix access using access list in the PIX firewall.

Since the connections are getting originated from the outside world you need to allow the relevant ports related to Citrix access.

Since you are able to ping the server the connectivity is there the only missing part will be the access restriction which comes in default with PIX.

regds

0 Helpful

ajagadee
Cisco Employee
Cisco Employee

‎08-30-2006 09:50 AM

Tony,

Its hard to say what the problem might be. But since you have IP Connectivity between the client and server, I would check the Path MTU.

Try pinging from the client with packets of different sizes and tweak the MTU value accordingly. For example:

ping -f -l 1500 IPAddress

Regards,

Arul

0 Helpful

pmajumder
Level 3
Level 3

‎08-30-2006 12:45 PM

Hello,

I would check the log to see where the deny is. However, as suggested you should ensure you are allowing Citrix ports specifically ICA port 1494.

Regards

Pradeep

0 Helpful
Customers Also Viewed These Support Documents