Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

Site to Site VPN and Citrix Metaframe Server

We have a client who's using Cisco Pix to do site to site VPN with there remote sites. They are trying to connect to a Citrix Server and are having an issue connecting to Citrix. They can access any other server on the Head End site except for the Citrix Server. I can ping the server and remote into it, but cannot connect to the server with Citrix. Any ideas?

3 REPLIES

Re: Site to Site VPN and Citrix Metaframe Server

Hi Tony

Have you allowed the ports being used for Citrix access using access list in the PIX firewall.

Since the connections are getting originated from the outside world you need to allow the relevant ports related to Citrix access.

Since you are able to ping the server the connectivity is there the only missing part will be the access restriction which comes in default with PIX.

regds

Cisco Employee

Re: Site to Site VPN and Citrix Metaframe Server

Tony,

Its hard to say what the problem might be. But since you have IP Connectivity between the client and server, I would check the Path MTU.

Try pinging from the client with packets of different sizes and tweak the MTU value accordingly. For example:

ping -f -l 1500 IPAddress

Regards,

Arul

New Member

Re: Site to Site VPN and Citrix Metaframe Server

Hello,

I would check the log to see where the deny is. However, as suggested you should ensure you are allowing Citrix ports specifically ICA port 1494.

Regards

Pradeep

241
Views
0
Helpful
3
Replies