Alerts     Sign In
[x]

Site Alert(s):

  • Server maintenance Saturday Nov 22, 2008, 12:00 PM - 3:00 PM. The Knowledge Center will be unavailable during this time.
Rate this Article:
You must be signed in to rate again
 Article Feedback Print View
Alternate Languages: N/A

"An error has occurred while connecting to the requested resource" When Launching Applications Through Access Gateway Advanced

Document ID: CTX110573   /   Created On: Jul 26, 2006   /   Updated On: Jul 26, 2006
Average Rating: not yet rated

Symptoms

Users connecting through Access Gateway Advanced (Access Gateway with Advanced Access Control) cannot launch applications from a Web Interface resource if the “IP Range” load evaluator is applied to Presentation Servers in the server farm.

The following error message is seen when launching an Application by clicking on the icon:

“Error: An error has occurred while connecting to the requested resource.”

When you try to right-click and save the launch.ica file to the desktop, the following error message appears:

“Internet Explorer cannot download …”

Cause

When connecting through Access Gateway Advanced through the Web proxy (URL Rewriting), the connection reports the IP address of the Access Gateway as the client address.

If this address is not included in the IP range defined in the load evaluator, the connection fails the criteria for the load evaluator. The Presentation Servers return a full load (because the load evaluator fails), and therefore no launch.ica file can be generated as no least busy server is available.

Resolution

  1. Add the IP address of the Citrix Access Gateway to the IP range load evaluator rule.
    -Or-
  1. Use a different load evaluator, see below for more information.

Note: This behavior may also appear because of the condition described in CTX107181 – Error: An error has occurred while connecting to the requested resource.

More Information

In some circumstances where Web Interface is used (for example, external connections over the Internet), the IP address of the client device is not an appropriate one to use for making policy decisions (load evaluators being just one example).

Because Network Address Translation (NAT) and private-use address ranges are almost the norm in many environments, any time a connection is made across one or more NAT boundaries reflecting organizational boundaries, the real client IP address may no longer useful for making decisions. For example, both ends could be using the same private-use IP address range, such as 10.x.x.x.

In some cases the IP address of the device proxying connections across the boundary might be used instead to good effect, in this case the Access Gateway address, since this address is usually under the control of the organization deploying Presentation Server / Access Suite and often an administrator wants to treat everything coming through the proxy the same way.


This document applies to:

Search
Knowledge Center
Advanced Search
XenApp
XenApp Plugins (Clients)
XenServer
XenDesktop
NetScaler Application Delivery
Access Gateway
EdgeSight
Provisioning Server
WANScaler
Password Manager
>> View All Products
Does it work with Citrix? Verify it - introducing the new Citrix Ready Community Verified
©1999-2008 Citrix Systems, Inc. All rights reserved.