Top Bar
Half Price Computer Books

Search and Save
Visit Half Price Computer Books
Fusion 13 Home Fusion 13 Computing Fusion 13 Alcohol Recovery Link to Fusion 13 W

Search Fusion13.com Computing
PicoSearch
Find what you were looking for?
Drop us a note.      


Publishing Your Citrix ® Server Through ISA Server.

While the "ISA Server Basic Setup" document can give you some pointers on how to gain access to the internet through Internet Security and Acceleration Server, such a configuration allows very little functionality other than web browsing.

To allow remote users access to a Citrix server, you must allow the Citrix traffic to come in to the network. Many networks now are running Microsoft's ® Internet Security and Acceleration Server which, by default, will not allow inbound Citrix traffic. To publish your Citrix server to the internet behind ISA server, follow the steps below.

Create the Protocol Definition

  1. In ISA Management, Expand: Internet Security and Acceleration Server > Servers and Arrays > <servername> > Policy Elements
  2. Right Click Protocol Definitions > New > Definitions...
  3. Type a name for the Definition, such as "Citrix Inbound". Click Next.
  4. Set the primary connection information to the values below. Click Next.
        Port Number: 1494
        Protocol Type: TCP
        Direction: Inbound

    ISA New Protocol Definition Wizard - Primary Connection Information

  5. Ensure "No" is selected, for "Do you want to use secondary connections". Click Next. Click Finish

Create the Server Publishing Rule

  1. In ISA Management, Expand: Internet Security and Acceleration Server > Servers and Arrays > <servername> > Publishing
  2. Right Click Server Publishing Rules > New > Rule...
  3. Type a name for the Rule, such as "Publish Citrix Server" Click Next.
  4. Type the IP address of the Citrix server into the "IP address of internal server:" field.
  5. Next to the "External IP address on ISA Server", Click the Browse button. Select the external address of the ISA server. Click OK. Click Next.
  6. Select "Citrix Inbound" from the list (or the name of the Protocol Definition that was created above) to populate the "Apply the rule to this protocol" field. Click Next.

    ISA New Server Publishing Rule Wizard - Protocol Settings - Select Citrix Inbound

  7. Select "Any request" (unless you would like to choose only specific clients or sets to allow). Click Next. Click Finish

Suggested Resources

Increase Your Skills. Decrease Your Book Prices.
Addison's ® Firewalls and Internet Security: Repelling the Wily Hacker, Second Edition Buy Addison's ® Firewalls and Internet Security: Repelling the Wily Hacker, Second Edition
Title Firewalls and Internet Security: Repelling the Wily Hacker, Second Edition
Publisher Addison
Description Addresses security problems, weaknesses, and the process of deploying an effective firewall.
ISBN 020163466X
Price Discount 20%
Sybex's ® Security Complete Buy Sybex's ® Security Complete
Title Security Complete
Publisher Sybex
Description Spectrum-wide supply of knowledge on keeping secure and up to date.
ISBN 0782141447
Price Discount 50%

Create the Protocol Rule (may or may not be necessary)

If you have opened all protocols to your users, you will not have to create this rule. However, if you have opened only certain protocols to your users, you have probably not allowed Citrix traffic. To create a Protocol Rule (if necessary) follow the guidelines below. Before you use these steps, you should follow the above instructions, and check if your Citrix server is already functional.

Create the Protocol Definition (very similar to above, except with Outbound traffic)

  1. In ISA Management, Expand: Internet Security and Acceleration Server > Servers and Arrays > <servername> > Policy Elements
  2. Right Click Protocol Definitions > New > Definitions...
  3. Type a name for the Definition, such as "Citrix Outbound". Click Next.
  4. Set the primary connection information to the values below. Click Next.
        Port Number: 1494
        Protocol Type: TCP
        Direction: Outbound
  5. Ensure "No" is selected, for "Do you want to use secondary connections". Click Next. Click Finish

Create the Protocol Rule

  1. In ISA Management, Expand: Internet Security and Acceleration Server > Servers and Arrays > <servername> > Access Policy
  2. Right Click Protocol Rules > New > Rule...
  3. Type a name for the rule, such as "Allow Citrix Traffic"
  4. Ensure "Allow" is selected for "Response to client requests to use protocol:
  5. Select "Selected Protocols" then place a checkmark in the box next to "Citrix Outbound". Click Next.

    ISA New Protocol Rule Wizard - Protocol - Select Citrix Outbound

  6. Unless you would like to set up a stricter schedule for use, leave "Always" selected, and Click Next.
  7. Unless you would like to setup up stricter guidelines as to who can use this protocol, leave "Any request" selected, and Click Next. Click Finish

Recommended Reading

Great Books. Great Prices.
Inside the Security Mind: Making the Tough Decisions Inside the Security Mind: Making the Tough Decisions
Title Inside the Security Mind: Making the Tough Decisions
Publisher Prentice Hall
Description Learn how the top gurus approach security. Enlighten yourself and rest your mind.
ISBN 0321174070
Price Discount 20%
Internet and EMail Security Kit: Defeat Hackers and Viruses and Increase Network Security Internet and EMail Security Kit: Defeat Hackers and Viruses and Increase Network Security
Title Internet and EMail Security Kit: Defeat Hackers and Viruses and Increase Network Security
Publisher Syngress
Description How to use security features, configurations, and methods. W2K, UNIX, Cisco, and more.
ISBN 1928994288
Price Discount 50%


Linux Information

Half Price Computer Books


Did you find this document to be helpful? Have any questions? Send us a note: computing@Fusion13.com
Broken links? Typographical errors? Send to: webmaster@Fusion13.com

Fusion 13 has taken painstaking effort to ensure the validity of its data;
however, the information contained in this document is provided without warranty.
The data presented is offered simply as a suggestion.
Fusion 13 can in no way be held responsible for how these suggestions are implemented in any environment.

Vote for Fusion13.com

 Computer Technical Tutorials & More

Valid CSS!

Vote for us at MyTechSupport's Top Tech Sites!            

Linux Information

Home

Computing

Alcohol Recovery

Etch-A-Sketch Art
Need computer support in Peoria, Illinois?
Please visit Logic Network Solutions for your computer repair needs!
Powered by Slackware Linux Powered by Apache Web Server DNS Powered by ZoneEdit
Legal



© 2003 Fusion 13