Citrix Systems 9000 Series manual 8List of IP addresses, ports, and applications

Page 43

Configuring the SSL VPN Client

the traffic is sent to the local LAN or the Internet. You can view the list of IP addresses, ports, and applications in the Profile pane of the Configuration dia- log box as shown in the following figure.

Figure 4-8List of IP addresses, ports, and applications

Consider a scenario where you have logged on to the SSL VPN and you need to download a file from a computer on the local LAN. With split tunneling enabled, you can directly connect to the computer via Windows Explorer and download the file. This is because, the client intercepts your download request and learns the destination IP address. As the IP address belongs to a computer in the local LAN, the client does not send the request to the remote network via the SSL VPN tunnel. Instead, it sends it directly to the local computer.

When Split Tunneling is disabled, all traffic is sent through the secure SSL VPN tunnel thus bypassing the local LAN and the Internet. In fact, all DNS lookups are sent to the DNS server on the remote network. As a result, you will not be able to access resources on your local LAN.

For you to use this feature, the SSL VPN administrator first needs to configure and enable it on the gateway. As part of the configuration process, the SSL VPN administrator needs to specify ranges of IP addresses, ports, and applica- tion names on the gateway. When the client intercepts traffic on your com- puter, it compares the destination IP address, port, and application name in the packets against the values configured by the SSL VPN administrator on the gateway. If the values lie within one of the ranges, the client sends the packet to the remote network. Else, it diverts it to the local LAN that your computer is a part of.

This feature has three options:

SSL VPN User’s Guide

4-9

Image 43
Contents SSL VPN User’s Guide for the Windows Platform Page Page Page Contents Troubleshooting the SSL VPN Client SSL VPN Architecture SSL VPN OverviewSSL VPN Overview Getting Started Using the SSL VPN Browser Plug-inSystem Requirements 1Security Alert window 2SSL VPN Login 5Browser plug-in being loaded 6Session window with the portal page in the background 7Download prompt Using the SSL VPN Agent8The Security Alert window 9SSL VPN Login 10Download 12 Portal Terminating the SSL VPN Session13Confirmation message box Terminating the Session for the Agent16 Exit message Terminating the Session for the Browser Plug-in Understanding the Cleanup ProcessUnderstanding the Data Sets 18 List pane NetScaler agent and activex browser plug-in Client authentication certificateApplications that have accessed Sslvpn services Passwords and autocomplete data stored by browserCleanup Logs Cleanup LevelBrowser cache cookies and temporary files Portal Using the SSL VPN PortalBookmarks Pane Using Portal ToolsHome Ping Pane3Add Bookmark Remove a bookmark4Remove bookmark File Transfer5File Transfer Top PanelLeft panel Right Panel Left PanelRight panel To download a file from a remote server To log on to a file serverTo upload a file to the remote server ThemesTo remove a folder, subfolder, or file Customizing your theme Selecting a theme for the SSL VPN session9Customize your theme Configuring Login Settings Configuring the SSL VPN ClientUsing Native Login 1Gateway Enterprise Edition dialog box 3Configuration dialog box Configuring Native LoginClick the Options tab. The Options pane is displayed 6Citrix Access Gateway Options dialog box Setting the SSL VPN GatewayConfiguring Security Settings Configuring Proxy SettingsConfiguring a Secondary Password Configuring Split Tunneling Configuring Interception Settings8List of IP addresses, ports, and applications Configuring Split DNS Managing Domain Conflicts 9Domain conflicts caused by identical domains 10List of networks on the remote intranet Managing Network Conflicts11Incorrect routing of traffic due to network conflicts Local LAN Access When Split Tunneling is DisabledConfiguring the SSL VPN Client Configuring the SSL VPN Client Debugging the SSL VPN Client Troubleshooting the SSL VPN ClientTrace Tab SSL VPN Session Error CodesCodes Message Explanation Action Permissions in the Windows Login failed SSL Accounts, the plug-in must Incorrect OS Version VPN Compression Statistics 2Compression Tab Connection Logs3Connection log Why does SSL VPN not work with MS Windows 9x? FAQsDoes SSL VPN use a client side IP address? Why does NetBios not access data on my computer? What should the client do when Windows crashes?Uninstalling the Browser Plug-in Uninstalling the SSL VPN ClientsFigure A-2Settings dialog box Figure A-3Downloaded Program Files folder Uninstalling the Agent

9000 Series specifications

Citrix Systems is a leader in virtualization technology, known for its robust solutions that facilitate remote access and enhance productivity. One of its noteworthy offerings is the Citrix 9000 Series, which is designed to optimize application delivery and provide excellent user experiences in enterprise environments.

The Citrix 9000 Series is built on advanced technologies that ensure high performance and reliability. One of the standout features is its ability to intelligently manage and route application traffic, reducing latency and ensuring that users receive quick and efficient access to virtual applications and desktops. This is critical in today's fast-paced work environment, where every second counts regarding application response times.

Another key characteristic of the Citrix 9000 Series is its support for a wide range of protocols, including HDX (High Definition User Experience), which enhances the performance of virtual applications across various network conditions. This responsiveness ensures that graphical applications run smoothly, even in bandwidth-constrained environments, making it ideal for remote workers and those using mobile devices.

Security is a top priority for Citrix, and the 9000 Series includes several features to protect sensitive data and provide safe access to applications. With support for advanced encryption and multi-factor authentication, organizations can ensure that only authorized users access their virtualized environments. Additionally, the system offers comprehensive monitoring and analytics to help IT teams identify performance issues and potential security threats proactively.

Scalability is another significant advantage of the Citrix 9000 Series. Whether a company is expanding its workforce or requiring additional resources to manage seasonal demands, this system can efficiently scale to meet those needs. It supports a variety of workloads, from small businesses to large enterprises, which ensures that organizations can adapt and grow without needing to overhaul their entire infrastructure.

Lastly, the user experience is thoughtfully crafted in the Citrix 9000 Series. The solution provides customizable user interfaces, enabling organizations to tailor the look and feel of applications to align with corporate branding while offering a seamless experience across devices.

In conclusion, the Citrix 9000 Series combines advanced features, scalability, security, and user-centric design, making it an excellent choice for organizations looking to enhance their application delivery and remote access capabilities.