VMware Horizon Community
ArvindBhargava
Enthusiast
Enthusiast
‎03-21-2021 11:37 AM

Not able to connect via UAG - connection reset by peer

Team , we are working on a deployment where we have setup single node of UAG and CS with desktop and AD. 

We are able to connect the desktop via Connection Server however its not working when we are connecting via UAG. 

Below is the error message in UAG logs

03/21 08:26:16,937[nioEventLoopGroup-9-4]INFO  proxy.HttpsBackendConnector[operationComplete: 128][52.176.96.180][][][]: Connected to backend channel: [id: 0xe2b57a82, L:/:41234 - R:/:443]

03/21 08:26:17,042[nioEventLoopGroup-9-4]INFO  networkcore.HttpsRequestRouter[operationComplete: 278][][][][]: [id: 0xe2b57a82, L:/:41234 ! R:/:443] backend channel is closed

03/21 08:26:17,422[nioEventLoopGroup-9-4]INFO  networkcore.HttpsRequestRouter[channelInactive: 111][][][][]: [id: 0x3784ec28, L:/:6443 ! R:/:55556]: Request router channel became inactive

03/21 09:10:38,261[nioEventLoopGroup-9-1]INFO  networkcore.HttpsServerInitializer[initChannel: 139][185.87.122.84][][][]: [id: 0x625b860b, L:/:6443 - R:/:58579]: opened channel, #open=1, total=1761

03/21 09:10:38,268[nioEventLoopGroup-9-1]WARN  networkcore.HttpsRequestRouter[exceptionCaught: 129][185.87.122.84][][][]: [id: 0x625b860b, L:/:6443 ! R:/1:58579]: SSLException: error:140760FC:SSL routines:SSL23_GET_CLIENT_HELLO:unknown protocol

03/21 09:10:38,268[nioEventLoopGroup-9-1]INFO  networkcore.HttpsRequestRouter[channelInactive: 111][185.87.122.84][][][]: [id: 0x625b860b, L:/:6443 ! R:/:58579]: Request router channel became inactive

03/21 09:19:23,211[nioEventLoopGroup-7-3]ERROR manager.HttpRedirectionServer[exceptionCaught: 132][][][][]: [id: 0x3d3e8392, L:/:8080 - R:/:49185]: Unexpected exception

java.io.IOException: Connection reset by peer

                at sun.nio.ch.FileDispatcherImpl.read0(Native Method)

                at sun.nio.ch.SocketDispatcher.read(SocketDispatcher.java:39)

                at sun.nio.ch.IOUtil.readIntoNativeBuffer(IOUtil.java:223)

                at sun.nio.ch.IOUtil.read(IOUtil.java:192)

                at sun.nio.ch.SocketChannelImpl.read(SocketChannelImpl.java:377)

                at io.netty.buffer.PooledByteBuf.setBytes(PooledByteBuf.java:253)

                at io.netty.buffer.AbstractByteBuf.writeBytes(AbstractByteBuf.java:1133)

                at io.netty.channel.socket.nio.NioSocketChannel.doReadBytes(NioSocketChannel.java:350)

                at io.netty.channel.nio.AbstractNioByteChannel$NioByteUnsafe.read(AbstractNioByteChannel.java:148)

                at io.netty.channel.nio.NioEventLoop.processSelectedKey(NioEventLoop.java:714)

                at io.netty.channel.nio.NioEventLoop.processSelectedKeysOptimized(NioEventLoop.java:650)

                at io.netty.channel.nio.NioEventLoop.processSelectedKeys(NioEventLoop.java:576)

                at io.netty.channel.nio.NioEventLoop.run(NioEventLoop.java:493)

                at io.netty.util.concurrent.SingleThreadEventExecutor$4.run(SingleThreadEventExecutor.java:989)

                at io.netty.util.internal.ThreadExecutorMap$2.run(ThreadExecutorMap.java:74)

                at io.netty.util.concurrent.FastThreadLocalRunnable.run(FastThreadLocalRunnable.java:30)

                at java.lang.Thread.run(Thread.java:748)

03/21 09:22:30,196[nioEventLoopGroup-7-4]ERROR manager.HttpRedirectionServer[exceptionCaught: 132][][][][]: [id: 0x96dcf7bf, L:/:8080 - R:/:51249]: Unexpected exception

java.io.IOException: Connection reset by peer

                at sun.nio.ch.FileDispatcherImpl.read0(Native Method)

                at sun.nio.ch.SocketDispatcher.read(SocketDispatcher.java:39)

                at sun.nio.ch.IOUtil.readIntoNativeBuffer(IOUtil.java:223)

                at sun.nio.ch.IOUtil.read(IOUtil.java:192)

                at sun.nio.ch.SocketChannelImpl.read(SocketChannelImpl.java:377)

                at io.netty.buffer.PooledByteBuf.setBytes(PooledByteBuf.java:253)

                at io.netty.buffer.AbstractByteBuf.writeBytes(AbstractByteBuf.java:1133)

                at io.netty.channel.socket.nio.NioSocketChannel.doReadBytes(NioSocketChannel.java:350)

                at io.netty.channel.nio.AbstractNioByteChannel$NioByteUnsafe.read(AbstractNioByteChannel.java:148)

                at io.netty.channel.nio.NioEventLoop.processSelectedKey(NioEventLoop.java:714)

                at io.netty.channel.nio.NioEventLoop.processSelectedKeysOptimized(NioEventLoop.java:650)

                at io.netty.channel.nio.NioEventLoop.processSelectedKeys(NioEventLoop.java:576)

                at io.netty.channel.nio.NioEventLoop.run(NioEventLoop.java:493)

                at io.netty.util.concurrent.SingleThreadEventExecutor$4.run(SingleThreadEventExecutor.java:989)

                at io.netty.util.internal.ThreadExecutorMap$2.run(ThreadExecutorMap.java:74)

                at io.netty.util.concurrent.FastThreadLocalRunnable.run(FastThreadLocalRunnable.java:30)

                at java.lang.Thread.run(Thread.java:748)

 

Let us know if more inputs are needed. 

0 Kudos
10 Replies
PHemme94
Contributor
Contributor
‎05-12-2021 12:17 AM

Hi, same for me...
Horizon 8 2103

05/12 07:10:07,926[nioEventLoopGroup-7-4]DEBUG proxy.HttpsProxyInterceptorHandler[log: 62][d62c1fa7-412f-4f96-9950-eed8f563d090]: ResponseWrite: 304 Not Modified on Channel : [id: 0xfbecf575, L:/10.16.210.183:31836 - R:eu0006cs01.eu0006.rosen-group.eu/10.16.210.182:443]
05/12 07:10:07,926[nioEventLoopGroup-7-4]DEBUG proxy.HttpsProxyInterceptorHandler[operationComplete: 271][d62c1fa7-412f-4f96-9950-eed8f563d090]: ResponseWrite: Successfully wrote response to client, closing=false
05/12 07:10:07,926[nioEventLoopGroup-7-4]DEBUG proxy.HttpsProxyReadHandler[log: 74][d62c1fa7-412f-4f96-9950-eed8f563d090]: Got chuncked response for event type: ProxyRead on Channel: [id: 0xfbecf575, L:/10.16.210.183:31836 - R:eu0006cs01.eu0006.rosen-group.eu/10.16.210.182:443]
05/12 07:10:07,926[nioEventLoopGroup-7-4]DEBUG proxy.HttpsProxyInterceptorHandler[channelRead: 162][d62c1fa7-412f-4f96-9950-eed8f563d090]: Processing default http response: EmptyLastHttpContent
05/12 07:10:07,926[nioEventLoopGroup-7-4]DEBUG proxy.HttpsProxyInterceptorHandler[log: 74][d62c1fa7-412f-4f96-9950-eed8f563d090]: Got chuncked response for event type: ResponseWrite on Channel: [id: 0xfbecf575, L:/10.16.210.183:31836 - R:eu0006cs01.eu0006.rosen-group.eu/10.16.210.182:443]
05/12 07:10:07,926[nioEventLoopGroup-7-4]DEBUG proxy.HttpsProxyInterceptorHandler[handleRewrites: 363][d62c1fa7-412f-4f96-9950-eed8f563d090]: No rewriting location header:EmptyLastHttpContent
05/12 07:10:07,926[nioEventLoopGroup-7-4]DEBUG proxy.HttpsProxyInterceptorHandler[operationComplete: 271][d62c1fa7-412f-4f96-9950-eed8f563d090]: ResponseWrite: Successfully wrote response to client, closing=false
05/12 07:10:10,609[nioEventLoopGroup-7-3]WARN channel.DefaultChannelPipeline[onUnhandledInboundException: 1188][d62c1fa7-412f-4f96-9950-eed8f563d090]: An exceptionCaught() event was fired, and it reached at the tail of the pipeline. It usually means the last handler in the pipeline did not handle the exception.
java.io.IOException: Connection reset by peer
at sun.nio.ch.FileDispatcherImpl.read0(Native Method)
at sun.nio.ch.SocketDispatcher.read(SocketDispatcher.java:39)
at sun.nio.ch.IOUtil.readIntoNativeBuffer(IOUtil.java:223)
at sun.nio.ch.IOUtil.read(IOUtil.java:192)
at sun.nio.ch.SocketChannelImpl.read(SocketChannelImpl.java:380)
at io.netty.buffer.PooledUnsafeDirectByteBuf.setBytes(PooledUnsafeDirectByteBuf.java:288)
at io.netty.buffer.AbstractByteBuf.writeBytes(AbstractByteBuf.java:1132)
at io.netty.channel.socket.nio.NioSocketChannel.doReadBytes(NioSocketChannel.java:347)
at io.netty.channel.nio.AbstractNioByteChannel$NioByteUnsafe.read(AbstractNioByteChannel.java:148)
at io.netty.channel.nio.NioEventLoop.processSelectedKey(NioEventLoop.java:656)
at io.netty.channel.nio.NioEventLoop.processSelectedKeysOptimized(NioEventLoop.java:591)
at io.netty.channel.nio.NioEventLoop.processSelectedKeys(NioEventLoop.java:508)
at io.netty.channel.nio.NioEventLoop.run(NioEventLoop.java:470)
at io.netty.util.concurrent.SingleThreadEventExecutor$5.run(SingleThreadEventExecutor.java:909)
at io.netty.util.concurrent.FastThreadLocalRunnable.run(FastThreadLocalRunnable.java:30)
at java.lang.Thread.run(Thread.java:748)

0 Kudos
PHemme94
Contributor
Contributor
‎05-12-2021 12:21 AM

Hi, 

i have exactly the same error with horizon 8 2103 and application streaming via RDSH. 
Same setup with horizon 7.13 is working.

0 Kudos
fabio1975
Commander
Commander
‎05-12-2021 01:06 AM

Ciao 

how many network cards have you assigned to the UAG?
Did you open the following doors?
Open these ports from any device on the Internet to Unified Access Gateway Load Balancer VIP:

• TCP and UDP 443 (includes Blast Extreme)

• TCP and UDP 8443 (for HTML Blast)

Open these ports from Unified Access Gateway to extensions:

• TCP 443 ai internal connection servers (via a load balancer)

• TCP 32111 (USB redirect) to all internal Horizon View agents.

• TCP and UDP 22443 (Blast Extreme) to all internal Horizon View agents.

• TCP 9427 (MMR and CDR) to all internal Horizon View agents.

Have you set the thumbprint of the connection server certificate in the UAG?

fabio1975_1-1620806718295.png

 

 

Fabio

Visit vmvirtual.blog
If you're satisfied give me a kudos

0 Kudos
PHemme94
Contributor
Contributor
‎05-12-2021 01:12 AM

Hi Fabio,
thanks for the quick response!

Yes all of those ports are accessible and I also set the thumbprint. The load balancer health check to the UAG is green and the Horizon service on the UAG is also green.

Thanks

0 Kudos
fabio1975
Commander
Commander
‎05-12-2021 01:17 AM

Ciao 

On connection server the Tunnel Settings are all disabled? 

fabio1975_0-1620807381932.png

 

Fabio

Visit vmvirtual.blog
If you're satisfied give me a kudos

0 Kudos
PHemme94
Contributor
Contributor
‎05-12-2021 01:22 AM

Yes exactly the same

0 Kudos
fabio1975
Commander
Commander
‎05-12-2021 01:36 AM

What version of UAG and Horizon do you have?
Can you get to the choice of the VM or does it not even ask you for login credentials?
Have you tried to carry out the tests indicated by this link?

https://docs.vmware.com/en/Unified-Access-Gateway/2103/uag-deploy-config/GUID-390D3A2A-0CB7-4A82-9B0...

Seems like a firewall problem to me.

Fabio

Visit vmvirtual.blog
If you're satisfied give me a kudos

0 Kudos
PHemme94
Contributor
Contributor
‎05-12-2021 01:41 AM

I tested version 3.5 and 2103 UAG version. I use application streaming via RDSH and htmlacces.
The RDSH user session is initiated and the application also starts and is shown for 1 second in the browser. Therefore the entire process is working and nothing is blocked or something else. At the first launch the browser tab closes after 1 second. If I open the app afterwards again everything is working perfectly. The tab is closed due to a UAG connection reset.

The issue isnt firewall related. The firewall hasnt denys or incompletes. 

 

0 Kudos
fabio1975
Commander
Commander
‎05-12-2021 01:49 AM

hello sorry I made confusion between you and ArvindBhargava, you had already indicated the version.


How many UAG servers do you have? (ArvindBhargava had pointed me to one ..)

Do you use a balancer (Kemp etc ..) or the HA included in the UAG?

Fabio

Visit vmvirtual.blog
If you're satisfied give me a kudos

0 Kudos
PHemme94
Contributor
Contributor
‎05-12-2021 02:16 AM

1x uag and 1x connection server , we dont use UAG HA , we use KEMP as loadbalancer

0 Kudos