RDP-Proxy not working with MS Session Broker?

[Michael Frye1709151915]

Hello all,

 

I've tested the RDP-Proxy functionality with Bookmarks for single RDP-Servers, which works fine and with a load-balanced group of 4 RDP-Servers managed by a Session Broker (Windows 2012R2), which did not work as I expected. It seems, that the RDP-Proxy cannot handle the interference of the Session Broker during the connection initialisation.

Maybe this is a misinterpretation on my side and there is anyone here, who is able to show me a way to configure the Load-Balancer and the RDP-related policies to work with such environment.

[Paul Blitz]

There is nothing in the edocs that indicate that the use of a session broker  is supported. 

 

Clearly, RDP with a Session Broker is different from simply making an RDP connection to a single server, so would need to be specifically coded to work. And in that case, I'm sure Citrix would mention that fact in the edocs.

[CarlStalhood]

See https://support.citrix.com/article/CTX227538 RDP Proxy Not Working on Server Where RDS Role is Installed

[Roberto Pereira]

Hi there,

 

Are there some updates in the meantime? unfortunately rdp-proxy with the connection broker is still not working.

 

Thank you and Regards,

Roberto

[Roberto Pereira]

It seems that NetScaler can handle now RDP Connections in a RDS Farm with Connection broker: https://docs.citrix.com/en-us/netscaler-gateway/12-1/rdp-proxy/rdp-redirection.html and https://docs.citrix.com/en-us/netscaler/12-1/load-balancing/load-balancing-common-protocols/lb-rdp-servers.html

 

I did the following now:

- In the RDP Server Profile I activated RDP Redirection

- I created a RDP Protocol Load Balancing vServer containing all 5 RDS Servers with Method Leastconnection with IP 1.1.1.1

- I created a Bookmark with the address rdp://1.1.1.1

 

When I click the bookmark, I am connected on one of the RDP Servers in the Load Balancing Group. This work only the first time, when I logoff or disconnect, I can't reconnect anymore.

 

In the article above there is a link to http://www.jasonfilley.com/rdpcookies.html regarding RDP Cookies. If I understand correct, I have to disable "Use IP Address Redirection" in the GPOs for all RDS Servers. I could not test this setting until now, I have to wait until a maintenance window. I am also not shure if the internal users can still connect and reconnect without problems over the connection broker with this GPO.

 

Somebody has already tested this? any help would be apreciate. Thanks.

[Jens Ostkamp]

On 14.6.2018 at 11:38 AM, Roberto Pereira said:

It seems that NetScaler can handle now RDP Connections in a RDS Farm with Connection broker: https://docs.citrix.com/en-us/netscaler-gateway/12-1/rdp-proxy/rdp-redirection.html and https://docs.citrix.com/en-us/netscaler/12-1/load-balancing/load-balancing-common-protocols/lb-rdp-servers.html

 

I did the following now:

- In the RDP Server Profile I activated RDP Redirection

- I created a RDP Protocol Load Balancing vServer containing all 5 RDS Servers with Method Leastconnection with IP 1.1.1.1

- I created a Bookmark with the address rdp://1.1.1.1

 

When I click the bookmark, I am connected on one of the RDP Servers in the Load Balancing Group. This work only the first time, when I logoff or disconnect, I can't reconnect anymore.

 

In the article above there is a link to http://www.jasonfilley.com/rdpcookies.html regarding RDP Cookies. If I understand correct, I have to disable "Use IP Address Redirection" in the GPOs for all RDS Servers. I could not test this setting until now, I have to wait until a maintenance window. I am also not shure if the internal users can still connect and reconnect without problems over the connection broker with this GPO.

 

Somebody has already tested this? any help would be apreciate. Thanks.

Did you ever get this to work? I have a similar problem but I used some other workaround, unfortunately it still doesn't really click:

https://discussions.citrix.com/topic/404362-netscaler-gateway-for-rds-farm/

[Roberto Pereira]

Sorry for my late replay. Yes, in the meantime it works. I made a new installation and now I used Netscaler Version 13. I followed the article from Carl: https://www.carlstalhood.com/netscaler-gateway-12-rdp-proxy/

 

In the article from Carl there is written to disable "Use IP Address Redirection" in GPO. But with this policy I could not connect. After changig back to "not configured" it worked for me.

 

I published a RDP Bookmark with an Load Balanced IP that shows to all RDS Servers (not to connection broker). Now it works fine and also reconnect to a disconneted session works fine.