VMware Horizon Community
dmuligan
Enthusiast
Enthusiast

View internal load balancer

In an internal View deployment with two connection servers what are the recommendations regarding the PCoIP Secure Gateway ?

Use PCoIP Secure gateway or uncheck it and allow View client connecting directly to desktops in port 4172 ?

Thank you

Reply
0 Kudos
3 Replies
markbenson
VMware Employee
VMware Employee

For internal users there is no need to use PCoIP Secure Gateway (PSG). As you say, internal clients can then connect PCoIP direct to the virtual desktops with 4172 (UDP and TCP).

PSG is mainly intended for remote access cases using VMware Access Point in a DMZ so that clients coming in from the internet connect Blast and PCoIP via Access Point.

Mark

Reply
0 Kudos
dmuligan
Enthusiast
Enthusiast

ok, but what if customer has two different networks and doesn´t want to allow PCoIP port being accessed directly from the source network ? In that case they can use PSG right , is it supported scenario ? What are the caveats ?

Also on that case what would be the PCoIP External URL ? the ip address of the connection server or the load balancer ?

Thank you markbenson

Reply
0 Kudos
markbenson
VMware Employee
VMware Employee

For internal networks, that's not an issue. The client connects direct to the virtual desktop. The PCoIP connection doesn't go through the internal load balancer or Connection Server. This is what most customers do on their internal networks.

In the case where there are two different networks (e.g. the Internet and internal network) then yes, they can use PSG. Often a DMZ is in place to provide security and Access Point is deployed. Also see Load Balancing with Access Point. This document includes information on what the PCoIP External URL and Blast External URL should be set to.

Hope this answers your question.

Mark

Reply
0 Kudos