Bob,
As I said, it's not very straight-forwarded. I have dug into it, and I have bits and pieces, but, unfortunately, don't have the entire setup. In essence, you'd need to:
- Modify Access Policy to not perform Logon Page/authentication for clients coming in from certain IP addresses
- Store a special config.xml file on the BIG-IP to be returned to the Receiver clients on the local network trying to connect to Storefront
The iRule would look something like this:
when HTTP_REQUEST {
if { [HTTP::uri] contains "/Citrix/PNAgent/config.xml" } {
HTTP::respond 200 content [ ifile get configXML ]
}
}
Of course, you would need to enhance the IF statement to check for the source IP address of the LAN IP space.
then you'd have to also create an iFile named configXML that has something like this below. You'd want to replace myapps.company.com with the FQDN name of your BIG-IP Virtual Server:
true
false
true
replace
replace
http://myapps.company.com/Citrix/PNAgent/config.xml
false
false
false
8
http://myapps.company.com/Citrix/PNAgent/enum.aspx
https://myapps.company.com/Citrix/PNAgent/smartcard_enum.aspx
http://myapps.company.com/Citrix/PNAgent/integrated_enum.aspx
true
true
true
6
http://myapps.company.com/Citrix/PNAgent/launch.aspx
https://myapps.company.com/Citrix/PNAgent/smartcard_launch.aspx
http://myapps.company.com/Citrix/PNAgent/integrated_launch.aspx
http://myapps.company.com/Citrix/PNAgent/reconnect.aspx
https://myapps.company.com/Citrix/PNAgent/smartcard_reconnect.aspx
http://myapps.company.com/Citrix/PNAgent/integrated_reconnect.aspx
http://myapps.company.com/Citrix/PNAgent/change_password.aspx
http://myapps.company.com/Citrix/PNAgent/desktopControl.aspx
https://myapps.company.com/Citrix/PNAgent/smartcard_desktopControl.aspx
http://myapps.company.com/Citrix/PNAgent/integrated_desktopControl.aspx
sson
false
false
false
false
false
Never
Direct-With-Fallback
true
true
false
true
true
true
true
true
false
false
true
seamless
fullscreen
640
480
800
600
1024
768
1280
1024
1600
1200
1
2
4
8
high
medium
low
off
local
remote
fullscreenonly
false
RemoteStreaming