Compatibility and limitations


Stormshield Network Firewall

4.7 and later versions

Operating systems

Windows Server 2016, 2019 and 2022

Server components

Citrix Virtual Apps and Desktop 7 LTSR (2203)

Microsoft Remote Desktop Services (RDS)


Maximum number of TS Agents for an SNS firewall: 100
Maximum number of users per TS Agent:

20 to 50 (values recommended by Citrix and Microsoft for a multi-session server).

Maximum number of port ranges per user: 20 (by default: 2)
Number of ports per range: 50 to 1000 (by default: 200)

Limitations and explanations on usage

  • Transparent authentication will not function on the TS Agent if ports (PAT) or addresses (NAT) are translated between the TS Agent and the SNS firewall,
  • Users authenticated via the TS Agent cannot be disconnected via the pop-up menu in user monitoring.
    A user can only be forced to disconnect with the command sfctl -a from the firewall's console, and the TSD service on the firewall must be restarted so that the user in question can authenticate again.