If you setup the MetaFrame server with the SSL Relay then yes. The Web Interface doesn't do any encrypting of ICA traffic by itself. Why would you not want to implement CSG? It's simple, free and very easy to use. Jeff Pitsch -----Original Message----- From: thin-bounce@xxxxxxxxxxxxx [mailto:thin-bounce@xxxxxxxxxxxxx] On Behalf Of Bergman, Bryan L. Sent: Wednesday, September 29, 2004 11:43 AM To: thin@xxxxxxxxxxxxx Subject: [THIN] Web Interface Firewall Issue All - Just for point of reference, I am using WI and MFXPS3.0. I have an SSL cert on the WI server. Do I have to have port 1494 open at the firewall? I really only want to have port 443. I guess my question is, is there a way to NOT have port 1494 open at the firewall and still use WI without CSG? TIA Bryan ******************************************************** This Weeks Sponsor RTO Software Do you know which applications are abusing your CPU and memory? Would you like to learn? -- Free for a limited time! Get the RTO Performance Analyzer to quickly learn the applications, users, and time of day possible problems exist. http://www.rtosoft.com/enter.asp?id20 ********************************************************** Useful Thin Client Computing Links are available at: http://thin.net/links.cfm *********************************************************** For Archives, to Unsubscribe, Subscribe or set Digest or Vacation mode use the below link: http://thin.net/citrixlist.cfm