I have a security server deployein the DMZ, nothing special, paired with the connection broker ok, resloves DNS ok but I can't connect through it. Can log on and get the pool selection but good old Black Screen when trying to establish connection to PCoIP session and nothing with RDP.
So to me it looks like the internal client firewall is blocking connections but they are telling me that 80/443 & 4172 are all open in both directions, so with limited access to their network anyone got any thoughts on where i can go to get the diagnostics of what is blocking this?
regards
Paul
Just for troubleshooting, could they temporarily open all ports for a quick 5 minute test. During that window if everything works you know that it is a port issue and that could help you narrow into the issue.
Have you seen this document?
I think you might need a few more ports than just the ones you listed.
Source | Destination | Port | Protocol |
Client | Security Server | 443 | HTTPS |
Client | Security Server | 80 | HTTP |
Client 1 | Security Server | 4172 | PCoIP (TCP and UDP) |
Security Server1 | View Desktop Subnet | 4172 | PCoIP (TCP and UDP) |
Security Server | View Desktop Subnet | 3389 | RDP |
Security Server | Connection Broker | 8009 | AJP13 |
Security Server | Connection Broker | 4001 | JMS |
If it works on the internal network and you get a black screen when you try through a Security Server in the DMZ, then it will almost certainly be one of the 3 setup steps not done properly. See http://communities.vmware.com/docs/DOC-14974
This is how others have fixed it.
Mark
The ports you mention for your internal firewall are actually the external (between Internet and DMZ) firewall. Go through the Admin guide carefully.
Mark.
It sounds like you don't have the PCoIP Gateway funtion enabled on the Replica broker that you paried with your security server. In the "PCoIP External URL" box put the external IP Address for the security server.