We have a vpn tunnel setup for a new site. The clients are configured to hit ips using tcp/ip and http. The issues is they are getting a response which directs them to a random citrix server. the firewall is only allowing them to hit the specified ip's in there program neighborhood. Is this normal or do we need to have the firewall allow any traffic to a citrix server? There are no citrix servers at the new site. We have two zones that are on 2 seperate subnets.
Here are the ports allowed from the new site.
81
2598
53
1494