Citrix ICA for Clients in an Internal Network

 Download PDF File

Table of Contents 

1.1Document Purpose

1.2Intended Audience

1.3Architecture

3.1Enable Subnet Originating Requests Globally

3.2Configure a Citrix VDI Virtual Service

 

1Introduction

Citrix) Virtual Desktop Infrastructure is a virtualization server environment which allows remote access to users. With Citrix VDI, application traffic is delivered across a Wide Area Network (WAN).

Citrix VDI makes IT management much easier. Rather than maintaining PCs at local branch offices, Citrix VDI enables a corporation’s IT department maintain virtual, location diverse PCs in a central location.

Users require confidence that the service is available when needed. KEMP LoadMasters help to provide reliability. When deployed as a pair, two LoadMasters give the security of High Availability (HA). HA allows two physical or virtual machines to become one logical device. Only one of these units is ever handling traffic at any particular moment. One unit is active and the other is a hot standby (passive). This provides redundancy and resiliency, meaning if one LoadMaster goes down for any reason, the hot standby can become active, therefore avoiding any downtime. For more information on HA please refer to the: High Availability (HA), Feature Description.

1.1Document Purpose

This document provides guidance on deploying Citrix VDI with a KEMP LoadMaster. The KEMP Support Team is available to provide solutions for scenarios not explicitly defined.

The KEMP support site can be found at: https://support.kemptechnologies.com.

1.2Intended Audience

This document is for anyone deploying Citrix VDI with a KEMP LoadMaster.

1.3Architecture

Figure 1‑1: Citrix VDI Architecture

2Citrix VDI Template

KEMP has developed a template containing our recommended settings for the Citrix VDIVirtual Service. This template can be installed on the LoadMaster and used when creating the Virtual Service. Using a template automatically populates the settings in the Virtual Service. This is quicker and easier than manually configuring the Virtual Service. If needed, changes can be made to any of the Virtual Service settings after using the template.

Download released templates from the Templates section on the KEMP documentation page: http://kemptechnologies.com/documentation/.

For more information and steps on how to import and use templates, refer to the Virtual Services and Templates, Feature Description.

3Configure the LoadMaster

The following sections provide step-by-step instructions on how to configure a LoadMaster to load balance the Citrix VDI workload.

3.1Enable Subnet Originating Requests Globally

It is best practice to enable the Subnet Originating Requests option globally.

In a one-armed setup (where the Virtual Service and Real Servers are on the same network/subnet) Subnet Originating Requests is usually not needed. However, enabling Subnet Originating Requests should not affect the routing in a one-armed setup.

In a two-armed setup where the Virtual Service is on network/subnet A, for example, and the Real Servers are on network B - Subnet Originating Requests should be enabled on LoadMasters with firmware version 7.1-16 and above.

When Subnet Originating Requests is enabled, the LoadMaster will route traffic so that the Real Server will see traffic arriving from the LoadMaster interface that is in that network/subnet.

When Subnet Originating Requests is enabled globally, it is automatically enabled on all Virtual Services. If the Subnet Originating Requests option is disabled globally, you can choose whether or not to enable Subnet Originating Requests on a per-Virtual Service basis.

To enable Subnet Originating Requests globally, follow the steps below:

  1. In the main menu of the LoadMaster WUI, go to System Configuration > Miscellaneous Options > Network Options.

Figure 3‑1: Subnet Originating Requests

  1. Tick the Subnet Originating Requests check box.

3.2Configure a Citrix VDI Virtual Service

The following are the steps involved and the recommended settings to configure a Citrix VDI StoreFront Virtual Service:

  1. In the main menu of the LoadMaster Web User Interface (WUI), go to Virtual Services> Add New.

Figure 3‑2: Virtual Service Parameters

  1. Enter a valid IP address in the Virtual Address text box.
  2. Enter 443 in the Port text box.
  3. Enter a recognizable Service Name, for example Citrix VDI StoreFront.
  4. Ensure tcp is selected as the Protocol.
  5. Click Add this Virtual Service.
  6. Expand the Standard Options section.

Figure 3‑3: Standard Options

  1. Select the Force L4 check box.
  2. In the Persistence Options section, select None from the Mode drop-down list.
  3. Select round robin from the Scheduling Method drop-down list.
  4. Expand the SSL Properties section.

Figure 3‑4: SSL Properties Section

  1. Select the SSL Acceleration Enabled check box.
  2. Select the Reencrypt check box.
  3. Ensure the TLS protocol check boxes are selected.
  4. From the Cipher Set drop-down list, choose BestPractices.
  5. Expand the Real Servers section.

Figure 3‑5: Real Servers Section

  1. Select HTTPS Protocol from the Real Server Check Parameters drop-down list.
  2. Ensure HEAD is selected as the HTTP Method.
  3. Click the Add New button.

Figure 3‑6: Add a Real server Screen

  1. Add Real Servers.

a)Enter the IP address of the StoreFront server.

b)Enter 443 as the Port.

The Forwarding method and Weight values are set by default. An administrator can change these.

c)Click Add this Real Server. Click OK to the pop-up message.

d)Repeat steps a) to c) above to add more Real Servers as needed, based on the environment.

References

Unless otherwise specified, the following documents can be found at: http://kemptechnologies.com/documentation.

Virtual Services and Templates, Feature Description. High Availability (HA), Feature Description

Document History

Date

Change

Reason for Change

Version

Resp.

Mar 2016

Initial Draft

First draft of document

1.0

KG

Aug 2016

Removed three Virtual Services

Issues with ICA

2.0

DD

Oct 2016

Release updates

Updates for 7.2.36

3.0

POC

Was this article helpful?

0 out of 0 found this helpful

Comments