This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Using html5 Portal for RDP not working with RDP Farm?!

Hi all,

we moved our Terminalserver from 2012 to 2019 Server and also extended to a RDP session host farm.

It seems that the html5 Portal only works if the session broker chooses itself for session hosting. Otherwise only "Socket broken" is shown up.

It should work in general or not?

Thanks for hints

Gernot



This thread was automatically locked due to age.
  • Can you post some logs of the error?

    OPNSense 64-bit | Intel Xeon 4-core v3 1225 3.20Ghz
    16GB Memory | 500GB SSD HDD | ATT Fiber 1GB
    (Former Sophos UTM Veteran, Former XG Rookie)

  • here is UTM html log:

    2022:02:21-07:57:11 Sophos-UTM screenmgr[4937]: Client 25: disconnected: Broken pipe
    2022:02:21-08:14:10 Sophos-UTM screenmgr[4937]: Client 11: disconnected: Connection timed out
    2022:02:21-08:45:17 Sophos-UTM screenmgr[4937]: Client 26: authenticated: user='UTM-User-XY'
    2022:02:21-08:45:17 Sophos-UTM screenmgr[4937]: Client 26: start screen requested: REF_CliConVpn
    2022:02:21-08:45:18 Sophos-UTM screenmgr[4937]: Client 26: connector started
    2022:02:21-08:45:18 Sophos-UTM screenmgr[4937]: id="2201" username="UTM-User-XY" event="Connection started" sub="vpn" variant="clv" sys="SecureNet" severity="info" srcip="87.139.108.170" service="HTML5 VPN" type="VNCRDesktop" sessionid="26" sessionname="VPN UTM-User-XY"
    2022:02:21-08:45:28 Sophos-UTM screenmgr[4937]: Client 26: connector stopped: 8
    2022:02:21-08:45:28 Sophos-UTM screenmgr[4937]: id="2202" username="UTM-User-XY" event="Connection stopped" sub="vpn" variant="clv" sys="SecureNet" severity="info" srcip="87.139.108.170" service="HTML5 VPN" type="VNCRDesktop" sessionid="26" sessionname="VPN UTM-User-XY"
    2022:02:21-08:46:03 Sophos-UTM screenmgr[4937]: Client 26: disconnected: Broken pipe
    2022:02:21-09:01:05 Sophos-UTM screenmgr[4937]: Client 11: disconnected: Broken pipe
    2022:02:21-09:02:22 Sophos-UTM screenmgr[4937]: Client 27: authenticated: user='UTM-User-XY'
    2022:02:21-09:02:22 Sophos-UTM screenmgr[4937]: Client 27: start screen requested: REF_CliConVpn
    2022:02:21-09:02:24 Sophos-UTM screenmgr[4937]: Client 27: connector started
    2022:02:21-09:02:24 Sophos-UTM screenmgr[4937]: id="2201" username="UTM-User-XY" event="Connection started" sub="vpn" variant="clv" sys="SecureNet" severity="info" srcip="87.139.108.170" service="HTML5 VPN" type="VNCRDesktop" sessionid="27" sessionname="VPN UTM-User-XY"
    2022:02:21-09:02:32 Sophos-UTM screenmgr[4937]: Client 27: connector stopped: 8
    2022:02:21-09:02:32 Sophos-UTM screenmgr[4937]: id="2202" username="UTM-User-XY" event="Connection stopped" sub="vpn" variant="clv" sys="SecureNet" severity="info" srcip="87.139.108.170" service="HTML5 VPN" type="VNCRDesktop" sessionid="27" sessionname="VPN UTM-User-XY"
    2022:02:21-09:02:39 Sophos-UTM screenmgr[4937]: Client 27: disconnected: Broken pipe

    Frontend says:

    "Server closed connection"

  • Hallo Gernot,

    HTML5 remote access is very resource-intensive.  Depending on the UTM hardware, I wouldn't use it for more than one or a few concurrent connections.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • I agree with Bob on that - I've tried it before, and it was a nightmare to do anything with RDP stuff.  It was not efficient by any means even for my home use.  I found VPN to be much better for any need to be connected to the internal network.

    OPNSense 64-bit | Intel Xeon 4-core v3 1225 3.20Ghz
    16GB Memory | 500GB SSD HDD | ATT Fiber 1GB
    (Former Sophos UTM Veteran, Former XG Rookie)

  • Hi all,

    thanks for answer.

    HTML5 is only for people that need urgent access. Right. But it is VERY helpfull and so it is needed and it doesn't work any more!

    And: No. UTM is virtual (I never use physical HW if possible) and performance is OK.

    Best Gernot.

  • Just curious what Sophos Support says about this, Gernot...

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA