Greetings,
We have set up a site to site tunnel with a contractor. They are using some of the same IP range's that we are. When they log in to our network and click on one of their icons in WI, they are asked to save the launch.ica file to their desktop. The IP that is in the address= field is an IP range that is being used on their network as well. I was looking at the DMZ settings on our Web blades but have never worked with before. Still doing some research. Is it possible to also just populate that address= field with a name instead of IP.
Thanks,
Todd
The easiest way would be to configure Alternate IPs (unique to both networks) on your XenApp Servers, and define the IP ranges in WI that are to be presented with the alternate address. Firewall rules may need to be modified to allow traffic to these IPs as well.
If you already have alternate IPs defined, and they are already being used in the remote network, you can define translated addresses in you WI.
Hi,
If you can, do away with the site-to-site VPN connection and have the remote users come in through a CSG/WI server in your DMZ. That way, all remote users will come in through a publicly resolveable FQDN and you'll have better security too.
If that's not an option, then WI translations is the way to go. You'll also need to NAT traffic between the two networks to avoid the duplicate subnet issue. Basically, the WI translation table will match the NAT translations you'll need to add to your firewall.
Alan Osborne
President (MCSE, CCNA, VCP, CCA)
VCIT Consulting - Citrix/Terminal Services Remote Desktop Solutions for SMB
VCIT website My Blog