F5 Friday: The Dynamic VDI Security Game DevCentral
Configure the PCoIP Secure Gateway and Secure Tunnel You use View Administrator to configure the use of the secure tunnel and PCoIP Secure Gateway. These components ensure that only authenticated users can communicate with remote desktops and applications. Clients that use the PCoIP display protocol can use the PCoIP Secure Gateway. Configure the Secure Tunnel and PCoIP Secure Gateway A typical network configuration that provides secure connections for external clients includes a security server. To use View Administrator to enable or disable the secure tunnel and PCoIP Secure Gateway on a security server, you must edit the View Connection Server instance that is paired with the security server. In a network configuration in which external clients connect directly to a View Connection Server host, you enable or disable the secure tunnel and PCoIP Secure Configuring External URLs for Secure Gateway and Tunnel close-line. To use the secure tunnel, a client system must have access to an IP address, or a fully qualified domain name (FQDN) that it can resolve to an IP address, that allows the client to reach a View Connection Server or security server host. To use the PCoIP Secure Gateway, a client connects to a View Connection Server or security server host using an URL.
VMware delivers virtualization benefits via virtual machine, virtual server, and virtual pc solutions.
VMware Horizon Client (PCoIP & Blast) Connection Workflow The HTTPS Secure Tunnel service (see the Horizon 7 Network Ports diagram) connects to the Horizon Agent on TCP 9427 for MMR and CDR traffic. However, with Blast Extreme it is possible to configure CDR and MMR to use a TCP side-channel which uses TCP 9427. Reboot VMware View Connection Server - Server Fault
Security Server with PCoIP over UDP available with View 4
Configuring NetScaler Gateway Enabled PCoIP proxy for Ensure that the Horizon View HTTP(S) Secure Tunnel and PCoIP Secure Gateway are not enabled on the View Connection Servers that NetScaler will proxy connections to. Following versions of VMware Horizon view are supported. Connection Server: 7.0.1 and above; Horizon Client: 4.2.0 … Load Balancing Horizon View – Design – VMFocus Jan 14, 2014 AskF5 | Manual Chapter: VMware Horizon View Requirements SecureTunnel and PCoIP Secure Gateway disabled Ensure that Secure Tunnel and PCoIP Secure Gateway are disabled on the VMware Horizon View server. Advanced authentication disabled Ensure that RSA authentication and other advanced authentication types are disabled on the VMware Horizon View server. Blast Secure Gateway disabled Using The PCoIP Secure Gateway to extend PCoIP Connections