Location on Firewall

[Calvin]

I have a W2K Terminal/Citrix Server that is multi-homed.
This system has one NIC on the DMZ port with a public IP
address and one NIC on the local internal network. My
question is where is the best place for this system to be,
on the DMZ port or on the local network with a rule in the
firewall to forward the appropiate protocol where it needs
to be?

Thanks in advance,

Calvin

 

[Matthew Harris [MVP]]

If it was me, I could put it behind the firewall, just to
be safe. If you are worried about security or people
sniffing packets, you could always enable 128-bit
encryption. The main advantage of putting the system
behind a firewall would be to block certain people's
access to it.

-M

 

[Calvin]

Thanks, that's what I was thinking also. One more question
though..which ports do I need to open for Terminal Server
and I also run Citrix, if you know that port number also
it would be very helpful.

Thanks again.

 

[Matthew Harris [MVP]]

ICA is port 1494. You'll also need to open up port 1604
for ICA farm queries.
-M

 

[Calvin]

Thanks a million..

-----Original Message-----
ICA is port 1494. You'll also need to open up port 1604
for ICA farm queries.
-M

.