EecITSupport
Contributor
Contributor

UAG not redirecting external https traffic to connection server

Trying to replace Horizon Security server with UAG.  Everything works after test deployment, able to connect to VDI from external network.  The only thing that's not working is our external remote webpage.  https://remote.mydomain.com

In the current environment, external IP for "remote" is NAT to the Security server. Internally, "remote" is routed to the Connection server.  My assumption is that the external traffic hits our firewall, then forward to Sec server, then pass to Connection server and back.

Verified the firewall nor any internal security is blocking the traffic as everything works when external traffic is routed through Sec server, but if I NAT the traffic to UAG, https://remote.mydomain.com comes up as site not reachable.  

Ran "curl https://remote.mydomain.com" command from the UAG console and receive the following message

curl: (60) SSL cert problem: unable to get local issuer certificate. 

curl failed to verify the legitimacy of the server and therefore could not establish a secure connection to it.

Could this be the reason UAG is not passing the request to Connection Server?  If so, how can I fix this as we don't plan to use a SSL from trusted CA.

Reply
0 Kudos