[THIN] Re: Web Interface Firewall Issue
- From: "Shonk, Joe - Perot" <JShonk@xxxxxxx>
- To: thin@xxxxxxxxxxxxx
- Date: Wed, 29 Sep 2004 10:00:44 -0700
If you wish to do a simple WI implementation from internet, then port 1494
needs to be open. ICA supports 128-RC5 encryption. If you do not want 1494
exposed, then VPN, SSL Relay, and CSG are your other options (hence why they
exist)
I wouldn't even bother doing a POC with anything other than CSG. It's the
simplest to configure and setup. No additional costs (other than a $50 cert
if you go production) and it doesn't require a lot of resources.
-----Original Message-----
From: Bergman, Bryan L. [mailto:Bryan.Bergman@xxxxxxx]
Sent: Wednesday, September 29, 2004 9:43 AM
To: thin@xxxxxxxxxxxxx
Subject: [THIN] Re: Web Interface Firewall Issue
If I would setup MF to use SSL relay , wouldn't I have to have IIS
installed on the MF server? I am doing a proof of concept right now
with very limited resources. I always prefer CSG as does the client. I
will be doing the POC with CSG after I do the POC using just WI.
Thanks for the response.
-----Original Message-----
From: Jeff Pitsch [mailto:jpitsch@xxxxxxx]
Sent: Wednesday, September 29, 2004 12:01 PM
To: thin@xxxxxxxxxxxxx
Subject: [THIN] Re: Web Interface Firewall Issue
If you setup the MetaFrame server with the SSL Relay then yes. The Web
Interface doesn't do any encrypting of ICA traffic by itself. Why would
you not want to implement CSG? It's simple, free and very easy to use.
Jeff Pitsch
-----Original Message-----
From: thin-bounce@xxxxxxxxxxxxx [mailto:thin-bounce@xxxxxxxxxxxxx] On
Behalf Of Bergman, Bryan L.
Sent: Wednesday, September 29, 2004 11:43 AM
To: thin@xxxxxxxxxxxxx
Subject: [THIN] Web Interface Firewall Issue
All -
Just for point of reference, I am using WI and MFXPS3.0. I have an SSL
cert on the WI server. Do I have to have port 1494 open at the
firewall? I really only want to have port 443. I guess my question is,
is there a way to NOT have port 1494 open at the firewall and still use
WI without CSG?
TIA
Bryan
********************************************************
This Weeks Sponsor RTO Software
Do you know which applications are abusing your CPU and memory?
Would you like to learn? -- Free for a limited time!
Get the RTO Performance Analyzer to quickly learn the applications,
users, and time of day possible problems exist.
http://www.rtosoft.com/enter.asp?id20
**********************************************************
Useful Thin Client Computing Links are available at:
http://thin.net/links.cfm
***********************************************************
For Archives, to Unsubscribe, Subscribe or set Digest or Vacation mode
use the below link:
http://thin.net/citrixlist.cfm
********************************************************
This Weeks Sponsor RTO Software
Do you know which applications are abusing your CPU and memory?
Would you like to learn? -- Free for a limited time!
Get the RTO Performance Analyzer to quickly learn the applications, users,
and time of day possible problems exist.
http://www.rtosoft.com/enter.asp?id20
**********************************************************
Useful Thin Client Computing Links are available at:
http://thin.net/links.cfm
***********************************************************
For Archives, to Unsubscribe, Subscribe or
set Digest or Vacation mode use the below link:
http://thin.net/citrixlist.cfm
********************************************************
This Weeks Sponsor RTO Software
Do you know which applications are abusing your CPU and memory?
Would you like to learn? -- Free for a limited time!
Get the RTO Performance Analyzer to quickly learn the applications, users,
and time of day possible problems exist.
http://www.rtosoft.com/enter.asp?id=320
**********************************************************
Useful Thin Client Computing Links are available at:
http://thin.net/links.cfm
***********************************************************
For Archives, to Unsubscribe, Subscribe or
set Digest or Vacation mode use the below link:
http://thin.net/citrixlist.cfm
Other related posts:
