Help with setting up FirePass Portal Access for Citrix

You are correct in that you do not need to specifically define a Application Tunnel. However the Portal Access creates a Dynamic App Tunnel for you. In order for this to work you need to add entries in the allow list for that resource group. Those entries should be the Citrix Servers and ports.

 

 

HTH

 

Fuzz

Thank you Fuzz for the information. It worked. I configured the allow list as you directed, and the error did not come up. I have learned a new thing today. Thank you again.

Hi,

 

 

can somebody explain exactly how to configure the allow list with the citrix server ip adresses and ports. I am not a FirePass admin but I need this information for my FirePass admin. He told me that he can not add ip adresses and ports to the allow list.

 

 

Kind regards m.

Do you mind to explain how is your Citrix has been configured in the FirePass? Depending on the configuration, the following is a way to add the IP address to the allow list:

 

 

Under the Application Access, there is an option "Access Control List." It has Allow list where you put all of your Citrix server addresses and ports. If you use a rage of ports, make sure those ports are added to the allow list.

Hi,

 

 

thanks for your reply. Sorry, but I am not a FirePass admin, so I cant follow your answer.

 

I am a Citrix specialist and need a step by step description what I should do to get a Citrix WebInterface to work over the FirePass.

 

What I konw from my FirePass admin that he configured the FirePass described in the deployment guide "Deploying Citrix Presentation Server (MetaFrame) with FirePass Controller" on page 13 section "Using FirePass Portal Access" point 1 to 13 and nothing else.

 

 

I tested this configuration: Connected to the FirePass, authenticated in to the WebInterface and saw all published applications. After that clicking a published application I get the error message described above in this forum entry.

 

 

 

So what should the FirePass admin configure additionally to get this work (step by step).

 

I have one WebInterface and behind 8 Presentation Server.

 

 

Kind regards m.

 

Ask your FirePass admin to follow the following:

 

 

-From the main nevigation pane, click Application Access

 

-From the Resource Group list in the upper left, select the relevent Resource Group

 

-Click the Application Tunnels tab

 

-In the screen, under the "Access Control List ", there is box named "Allow List" where your FirePass admin needs to add all of your Citrix server addresses and ports. If you use a rage of ports, make sure those ports are added to the allow list.

 

 

Hopefully it will help you.

 

 

Thanks.

 

Thanks,

 

I will ask the FirePass Admin to do these additionally settings and inform you about the outcome.

 

 

Thanks

Hi,

 

 

if I do this (Add Application tunnel) I need to add a path for (for example) the pn.exe (Citrix Program Neighborhood).

 

The Admin configured a application tunnel, but know I did not see the Web Interface and the link start the Citrix Program Neighborhood direct.

 

 

It's a little bit confused, it gives "Web Application Tunnels", "Web Application Favorites" and "App Tunnels Favorites" as I see in the documentation.

 

 

Starting at the beginning:

 

 

- What did I need first?

 

"Web Application Tunnels" or a "Web Application Favorites" where I can configure the Web

 

Interface URL.

 

 

- Then I need to add the Citrix Server IP addresses and ports. So I need a "App Tunnels Favorites", thats true?

 

 

Kind regards m.