VMware Horizon Community
eddyccl
Contributor
Contributor
‎03-12-2014 07:12 AM
Jump to solution

[View 5.3]Connecting to Security Server via Blast Redirected to Local Private IP Address of View Desktop in Google Chrome

Hi,

I'm currently facing an issues in my test lab which it happens when I am connecting from public IP address to security server via Blast. No issues if I'm connect using View Client.

Using blast, i can login, select a view desktop and then the webpage url showing my security server ip for about 10 secs and then i was redirected to the NAT private IP of the target view desktop and obviously I could not connect.

vd.png

Note: The redirection to local private ip does not happens if i configured to connect to view connection server via blast.

I have:

  • self-signed SSL installed, without warnings
  • enabled tunneling on connection server
  • enabled tunneling on security server
  • disabled all firewall for testing purposes
  • locally defined in host file to resolve my security server fqdn to static IP used in my office. (vsecurity.icliq.com in this case)
  • required ports are configured with port forwarding in my office router

security.png

Hopefully someone could shed some lights on this issue. Thanks


Eddy

Tags (2)
Reply
0 Kudos
1 Solution

Accepted Solutions
markbenson
VMware Employee
VMware Employee
‎03-18-2014 12:57 AM
Jump to solution

Yes, the Blast Secure Gateway option is used to ensure that Blast connections are routed from your browser through the Security Server ( or Connection Server). This is what you will want for remote access. If you don't select this option, Blast connections will be direct to your virtual desktop. This is for internal connections.

The same is true for PCoIP And the PCoIP Secure Gateway.

Mark

View solution in original post

Reply
0 Kudos
5 Replies
eddyccl
Contributor
Contributor
‎03-12-2014 08:44 AM
Jump to solution

Here is an update:

I found that this issue only happens when i'm using Google Chrome, which is strange. My chrome version is 33.0.1750.149 m

It works fine in both IE10 and Firefox 27, but with a notification that IE has poorer audio quality and recommending me to use Google Chrome.

Has anyone facing similar issue?

Thank you

Eddy

Reply
0 Kudos
mpryor
Commander
Commander
‎03-17-2014 08:57 AM
Jump to solution

To sanity check:

* The connection server the SS is paired with has the Blast Secure Gateway option enabled (not the same as the secure tunnel option)?

* The VMware Horizon View Blast Secure Gateway service on the SS is enabled and running?

Reply
eddyccl
Contributor
Contributor
‎03-17-2014 11:58 PM
Jump to solution

Hi mpryor,

Both of the servers were already paired and the blast secure gateway option has been enabled. The service on SS is enabled and started.

I know why using chrome i was not able to connect to the vd now. In early stage of testing it only involves Chrome browser and the option Blast Secure Gateway was not enabled. Firefox and IE was tested after I've enabled the Blast Secure Gateway option in connection server.

After I cleared the browser cookie and cache I can now redirect to the desktop without problems.

The Blast Secure Gateway Option is mandatory if we want to connect from outside via SS? My connection will be redirected to local NAT address like in the op if i don't enable it.

Thank you

Eddyc

Message was edited by: eddyccl

Reply
0 Kudos
markbenson
VMware Employee
VMware Employee
‎03-18-2014 12:57 AM
Jump to solution

Yes, the Blast Secure Gateway option is used to ensure that Blast connections are routed from your browser through the Security Server ( or Connection Server). This is what you will want for remote access. If you don't select this option, Blast connections will be direct to your virtual desktop. This is for internal connections.

The same is true for PCoIP And the PCoIP Secure Gateway.

Mark

Reply
0 Kudos
eddyccl
Contributor
Contributor
‎03-18-2014 01:03 AM
Jump to solution

Hi Mark,

Noted with thanks!

Eddyc

Reply
0 Kudos