Trying to decide between Citrix and a pure windows terminal server and one issue that we like about Citrix is their Access gateway security.The fact that its an appliance in the dmz and not just a windows machine running gateway server.
But, after looking into Microsoft's forefront threat management gateway and the unified access gateway, I'm starting to wonder what the big difference is between the two and which is really more secure between a Citrix Access gateway and a Microsoft forefront gateway.
If anyone has any ideas about the security between the two please let me know.
Or if anyone has another solution for a secure access gateway for a 2008 terminal server I'd love to hear about it.
In my opinion, the words "Microsoft" and "Security Gateway" don't belong in the same sentence.
The CAG appliance is a hardened appliance, designed for a specific purpose. Forefront requires Windows.
Yeah, the fact that the forefront server has to run on a damn windows server makes me scratch my head.
Can a Citrix Access Gateway be used to connect to a pure TS server and run the apps?
Or when hosting TS apps to the internet is it standard practice to put the windows gateway server behind a firewall and connect to it using port 443? Or is that still seen as a security risk by everyone here?
Aha, now I have the same problem, I'd love to hear about that if anyone has some solution for a secure access gateway for a 2008 terminal server,thanks!
to be or not to be?
loganking, what exactly are you trying to achieve here? Are you looking to implement a method of remote access to access an already existing citrix environment or are you doing something else?
There are many methods of deploying such remote access capabilities, I would however recommend staying away from Microsoft Forefront TMG compared to CAG - but it depends on your architecture and what your trying to achieve.
I'm wanting to host applications using terminal server on the internet. But, trying to see if I can do it without buying Citrix Xenapp and Citrix access gateway.
What I need is a device and or method that has the security like the Citrix Access Gateway.