We're going to run a little trial of Citrix, mostly for remote access - and I was wondering how other people had access to their networks set up. I'll be asking the RBC for an unrestricted external IP address - do most people run that to a fierwall/router and forward to the Citrix servers? Or do you connect the Citrix server direct to the IP address? Any opinions and hints gratefully received (as ever)
Ric is the man to ask. He has much Citrix. Much, much Citrix.
Haven't done this in school(s) yet. Our LEA doesn't hand out public IP's for our use. However the way I've done this sort of thing in the past is to have a Linux based bridging firewall inbetween the Citrix box(s) and the Universe.
If you have several Citrix boxes you will also want to load balance them. I recommend using LVS. You are better off keeping the load balancing seperate from the firewalling otherwise hillarity ensues. You'll probably want to load balance for internal clients anyway. Either way, you'll need a second box for the load balancing.
It's worth noting that this is a fairly generic solution that will work for other things other than Citrix. I've used it in the past for IMAP, LAMP, DNS and Proxy servers.