VMware Horizon Community
msteffes
Contributor
Contributor

SSL Connection using SonicWALL SSL 2000 to VDI Session

I'm not sure if this is the correct forum but I don't see a better fit. We are trying to creat a SSL connection to a VDI from external using just a web browser. We are using a SonicWALL ssl2000 to provide the SSL connection to the broker server which creates a connection to a VDI. Internallly when we go directly to the broker address we are able to succesfully launch a VDI session. When we go through the SSL box internally we get as far as where we can launch a VDI session but we get the error "Access Status: Not Connected". When we come from an external location through the SSL connection we receive the error "A connection to the VDM Server http://url.com:80 could not be established. ". We have External URL setting set to a externally resovable URL that resolvs to an internal IP address and allowed us to get externally to the error we see now. Is there a setting we are missing or over looking? See attached for screen shots.

Reply
0 Kudos
5 Replies
Texiwill
Leadership
Leadership

Hello,

Moved to the VMware View forum.


Best regards,
Edward L. Haletky
VMware Communities User Moderator
====
Author of the book 'VMWare ESX Server in the Enterprise: Planning and Securing Virtualization Servers', Copyright 2008 Pearson Education.
Blue Gears and SearchVMware Pro Blogs -- Top Virtualization Security Links -- Virtualization Security Round Table Podcast

--
Edward L. Haletky
vExpert XIV: 2009-2023,
VMTN Community Moderator
vSphere Upgrade Saga: https://www.astroarch.com/blogs
GitHub Repo: https://github.com/Texiwill
Reply
0 Kudos
admin
Immortal
Immortal

When you are working with an SSL appliance like a SonicWall, the connecting client from the Internet will be a "local" PC in your network when it is connected through the SSL tunnel. In this case it should also get a local IP address and act as a local pc. What configuration are you using? SSL tunnel or direct connection to the desktop? Server in SSL mode or just HTTP? Please could you post the screenshots of your VDM server settings?

Thanks,

Christoph

Reply
0 Kudos
msteffes
Contributor
Contributor

If you need somethign else let me know.

Reply
0 Kudos
jhardman
Enthusiast
Enthusiast

Use the NetExtender instead of trying to do it from just a web page. I am pretty sure the SW is not going to support the multi-protocol of the View portal.

Reply
0 Kudos
msteffes
Contributor
Contributor

We thought of that but that would defeat our purpose. We want to allow access to VDI sessions with using a web browser. If we use NetExtender the user would have to have admin rights to install it the first time which we don't want. Does anybody know of a product that would allow access using SSL with no client except for the browser plug-in that has two-factor authentication not using RSA?

Reply
0 Kudos