[THIN] Re: CSG 3.1.2 and WI 5.2 - HELP!

• From: Greg Reese <gareese@xxxxxxxxx>
• To: thin@xxxxxxxxxxxxx
• Date: Wed, 2 Dec 2009 07:40:54 -0600

are you using a public/commercial cert or one fro your own internal CA?  If
the conencting user doesn't have happiness on the cert, they won't get
anywhere.  They need to trust the CA that issued it, names have to match,
there can be no warnings on it.  etc, etc

443 needs to be open to the CSG, preferably in the DMZ, then 1494, 80
(assuming the default 80 for XML) from the CSG to the internal network.

is that how you have it?

On Wed, Dec 2, 2009 at 6:46 AM, James Scanlon <scanjam@xxxxxxxxxxx> wrote:

>  I have a new CSG and WI setup where it all works on the inside of the
> network via CSG (users can all get the correct CSG address in the ICA files
> etc and launch apps) then i see sessions running via csg
>
> Both CSG and WI are running on the same box with WI configured as indirect
> mode
>
> If however we try this from the internet with just port 443TCP forwarded we
> get 'this page cannot be displayed'
> This is actually the second firewall we have tried both with the same
> result.
>
> Testing the STA's i get http 400 - Bad request (shouldnt it be resource not
> allowed?) though all green ticks in the ~SG Diagnostics
>
> The Secure gateway was filling the logs with BAD tickets and other crap
> about the server xml is not able to process requests - but this server was
> removed AGES ago...?
>
> HELP!! Our client is extremely p1ssed that they have replaced their
> firewall for nothing and the CSG still isnt working...
> Surely if it works inside then it must simply be a firewall / network
> issue?
> And even if it is a citrix misconfig issue why doesnt the page load at
> all?? Usually we get the first page but then the apps wont launch or the
> user cant log in?
>
> SCANJAM
>
>
> ------------------------------
> Check out the latest features today Get more out of 
> Hotmail<http://windowslive.ninemsn.com.au/hotmail/article/878466/your-hotmail-is-about-to-get-even-better>
>

• Follow-Ups:
  • [THIN] Re: CSG 3.1.2 and WI 5.2 - HELP!
    • From: James Scanlon

• References:
  • [THIN] CSG 3.1.2 and WI 5.2 - HELP!
    • From: James Scanlon

Other related posts:

• » [THIN] CSG 3.1.2 and WI 5.2 - HELP!- James Scanlon
• » [THIN] Re: CSG 3.1.2 and WI 5.2 - HELP!- Berny Stapleton
• » [THIN] Re: CSG 3.1.2 and WI 5.2 - HELP! - Greg Reese
• » [THIN] Re: CSG 3.1.2 and WI 5.2 - HELP!- James Scanlon
• » [THIN] Re: CSG 3.1.2 and WI 5.2 - HELP!- Berny Stapleton
• » [THIN] Re: CSG 3.1.2 and WI 5.2 - HELP!- James Scanlon
• » [THIN] Re: CSG 3.1.2 and WI 5.2 - HELP!- Greg Reese

1. Home
2. thin
3. Archive
4. 12-2009

---

• » Previous by Date
• » Next by Date
• » Related Posts
• » View list details
• » Manage your subscription

---