Re: ISA - RDP and Citrix
From: Kilgore Troute (troute_kilgore_at_yahoo.com)
Date: 06/15/04
- Next message: CJ: "Re: Instant Messanger clients disconnecting with ISA Server 2000"
- Previous message: anonymous_at_discussions.microsoft.com: "Re: Multiple External IP addresses"
- In reply to: Jim Harrison [MSFT]: "Re: ISA - RDP and Citrix"
- Messages sorted by: [ date ] [ thread ]
Date: 15 Jun 2004 04:35:41 -0700
My access policies look like this:
1. HTTP -> TYPE PROTOCOL -> Applies to ALL IP TRAFFIC -> ANY REQUEST
The HTTP rule was origionaly limitted to certain protocols, but I did
all IP traffic hoping that would allow the RDP connection
Under protocol definitions I created one named RDP. It is setup as
follows:
RDP -> DEFINED BY USER -> PORT 4125 -> TCP -> OUTBOUND
ISA already had one named RDP on port 3389 inbound TCP
Our users / vendors aren't having trouble accessing anything but
Citrix / RDP sites.
Thanks for your timely reply.
Actually, I think I just figured out what is happening. We are
switching internet providers - I can't fully switch over the T1 yet,
so, what I did was put the ISA server on the NEW T1's gateway - a
10.1.20.3 internal address. Our core router still points to 10.1.1.1
the old T1's gateway. So users initially connect to ISA and retreive
the Webpage to connect, but once the RDP session tries to start, it
gets routed to the OLD T1.. which is an outsourced, or, managed
firewall. Err.
"Jim Harrison [MSFT]" <jmharr@online.microsoft.com> wrote in message news:<Ov8tAchUEHA.4088@TK2MSFTNGP09.phx.gbl>...
> You don't say what your ISA policies are..?
> Q1 - Do you have a protocol rule allowing RDP?
> Q2 - Can your vendors get access for other non-HTTP protocols through your ISA?
>
> --
> Jim Harrison [ISASE]
> Read the help, books and articles!
>
> This posting is provided "AS IS" with no warranties, and confers no rights.
>
>
> "Kilgore Troute" <troute_kilgore@yahoo.com> wrote in message news:bb51ccd2.0406140424.4d109a4c@posting.google.com...
> Set up: We have a cisco Pix and an ISA 2000 box. The pix is setup to
> allow internet traffic from ISA. All Clients use the ISA box as
> their proxy.
>
> A few of our employees need to be able to RDP to a remote server
> (vendor site). The vendor appears to be using the TSWEB module,
> running terminal services.
>
> When they try to connect to the remote desktop they get the error:
> Remote Desktop Disconnected, the server may not be accepting
> connections... yada yada yada.
>
> I've ruled out the firewall because I can RDP to this site directly
> from the ISA box.
>
> I've tried searching google and MS, and haven't found anything that
> works. Any help would be great.
- Next message: CJ: "Re: Instant Messanger clients disconnecting with ISA Server 2000"
- Previous message: anonymous_at_discussions.microsoft.com: "Re: Multiple External IP addresses"
- In reply to: Jim Harrison [MSFT]: "Re: ISA - RDP and Citrix"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
