Solved: Re: Accessing resources via Blast Extreme from the...

atoerper · ‎08-27-2018

We have PCoIP implemented today and want to explore Blast Extreme. We can't seem to be able to get Blast Extreme working from external sources. It is working internally.

Environment details:

Horizon 7.3.2

2 Security Servers

Horizon Clients point to load balanced URL. Security Servers sit behind load balancer

Security Servers have their own Public IP(For PCoIP Secure Gateway

For PCoIP, Security Servers have their own Public IP and IPs are used in the PCoIP Secure Gateway field.

How should Blast Extreme be implemented as far as which firewall ports are opened to where as well as any config that needs done within Horizon Admin?

atoerper · ‎08-27-2018

All is good. The scurity servers needed bounced for some reason. Now listening on port 8443 and external connection verified.

View solution in original post

BenFB · ‎08-27-2018

You need to make sure the Blast Secure Gateway (BSG) is enabled and configured. By default Blast Extreme uses TCP/UDP 8443 but it can be changed.

I would recommend converting your security server to UAG.

Configure the Blast Secure Gateway

Horizon 7 TCP and UDP Ports

Configuring Security Protocols and Cipher Suites for Blast Secure Gateway

atoerper · ‎08-27-2018

The security servers don't appear to be listening on port 8443. Is there something that needs done to enable blast extreme on them?

BenFB · ‎08-27-2018

You need to enable/configure the Blast Secure Gateway (BSG) and add the appropriate firewall rules.

atoerper · ‎08-27-2018

Blast Secure gateway is enabled in the admin console and the firewall rules are opened. However, the security servers are not listening on port 8443 when completing a netstat -a from cmd prompt.

atoerper · ‎08-27-2018

All is good. The scurity servers needed bounced for some reason. Now listening on port 8443 and external connection verified.

All

Accessing resources via Blast Extreme from the internet