VMware Horizon Community
JasonBurrell
Enthusiast
Enthusiast

View connection lost after establishing VPN connection

I have a view desktop that is used to connect to other vpn locations. Once the VPN is established I loose connection to the view desktop. Is there any way that this can be configured to work as it does when using vCenter to view the console?

Tags (3)
Reply
0 Kudos
9 Replies
mittim12
Immortal
Immortal

So you are running the VPN client inside of the View desktop?

Have you run the support scripts to generate the logs for review? Might find something interesting in there.

Are you running in direct or indirect mode and once the VPN is started does the desktop still have network connectivity to the connection broker?






If you found this or any other post helpful please consider the use of the Helpful/Correct buttons to award points

Twitter: http://twitter.com/mittim12

Reply
0 Kudos
JasonBurrell
Enthusiast
Enthusiast

Yes I am running the VPN client inside the view desktop.

I have not generated logs, this is my first view install and do to have logging setup.

I'm not sure if I am running in direct or indirect mode, once the VPN is established the desktop will loose connection to the broker as well as the rest of the network, this is how it is deisgned. Is it possible for the connection broker to use the underlying ESX environment for it's connection instead of requiring connectivity to the agent?

Reply
0 Kudos
mittim12
Immortal
Immortal

In direct mode the client machine connects directly to the VDI session only using the broker to recieve it's machine allocation. In the indirect mode the session is tunneled from client to VDI through the connection broker. Either way you have to maintain network connectivity to the client that's connected to the VDI session.

Just think of it this way. If you are going to remote into a machine then in order to sustain that session you need to have connectivity to it at all times.






If you found this or any other post helpful please consider the use of the Helpful/Correct buttons to award points

Twitter: http://twitter.com/mittim12

JasonBurrell
Enthusiast
Enthusiast

Thanks I guess view will not work for my needs then.

Reply
0 Kudos
mikeyes
Enthusiast
Enthusiast

If you setup your VPN client to perform split level tunneling then you can maintain a connection to the view desktop even after the VPN tunnel is established. Split level tunneling allows the VPN client to only tunnel what needs to go over the VPN tunnel and leave the rest open. The VPN client software might also be turning on a local firewall when it builds the tunnel. These are all things that get turned on for design or security. If you can reconfigure the VPN this could still work.

Reply
0 Kudos
JasonBurrell
Enthusiast
Enthusiast

I don't want to split tunnel for, as you mentioned, security reasons. Smiley Happy

Reply
0 Kudos
mikeyes
Enthusiast
Enthusiast

Another idea I had last night (and I have not tested this so I don't know how well it would work). Setup two virtual NIC's in the VM and make sure routing is disabled between them. Setup split level tunneling on the VPN client and have it tunnel all traffic used on NIC1. Setup a separate subnet on NIC2 and use NIC2 only for the remote control.

Not as secure as one NIC with split level tunneling disabled but maybe a middle ground?

Reply
0 Kudos
tgjustincheong0
Contributor
Contributor

HI, I also have this issue.

Can you resloved it?

Reply
0 Kudos
JaeseongLee
Enthusiast
Enthusiast

Let me share my experience,

Most of VPN solution have "allow local LAN access" feature. (=Split Network)

If this feature enabled, VDI can keep establishing VDI connection.

But some company need to block other network when they connect VPN.

In that case, VPN block all of the NIC adapter except of their own VPN network adapter.

So we think make virtual machine in VDI machine.

(and it worked!)

user can move their files and clipboard VDI to internal VM.

First, we recommend Oracle VirtualBox as its free software.

But it conflicted with View agent or vaccine agent when we upgrade.

So we purchased VMware workstation Pro (it is possible VPN users are less than 20)

it worked with no problem till now.

Reply
0 Kudos