VDI-UAG

ajlassi123 · ‎11-25-2020

Hello,
I configured UAG version 20.9 on a single interface in DMZ
and opened specific ports
internet -----> public address of UAG 443 / internet ------> public address of UAG 4172

In the test phase, I tested public address UAG in browser works fine but in thinclient DellWyse 3040 cannot connect

But it allows all traffic in the firewall, the thinclient open the session

thank you for Helping

nburton935 · ‎11-25-2020

- Is your TC and pool set to PCoIP or Blast?
- What is your tunnel configuration on the UAG?
- What firewall rules do you have set from DMZ > internal?

ajlassi123 · ‎11-25-2020

- Pool set to PCoIP

-I not configured tunel on the UAG just i configured external PCoIP

- I configured UAG single NIC and add rules in firewall

internet ----- > address public UAG 443 tcp and udp

Internet -----> address public UAG 4172 tcp and udp

Internal

UAG ------ > view connection 443 tcp and udp

UAG ------> desktop 4172 tcp and udp

nburton935 · ‎11-25-2020

- You said you can connect via web browser externally - are you also able to do the same from Horizon Client on a Windows device?

- Sometimes Thin Clients are picky on certificates and don't store as many roots. Have you imported the root and intermediary certs on the TC that the UAG is presenting? Are you using a public CA on UAG?

- Finally, can you confirm that Tunnel, PCoIP secure gateway, and Blast Secure Gateway are disabled on the Connection Server settings? I assume you only have UAG pointed to a single CS and no load balancer is in place here?

All

VDI-UAG