I was curious if anyone has been successful accessing a virtual desktop pool directly using VMware HTML Access (HTML5 using BLAST protocol) using the Juniper SSL VPN.
I've been able to setup a web bookmark to our Connection Server, been able to authenticate, and been able to connect to a desktop. This is without Network Connect or Pulse running. It's strictly HTML traffic being sent back and forth.
That being said, I'm having some connectivity issues (multiple disconnects and attempts to reconnect) and also some performance issues. Not having these issues internally. I'm wondering how performance should be since it's using the rewrite engine.
Anyone else have experience or some information on if and how this should be configured?
FYI we're on 7.4R3, Horizon View 5.2 w/ Feature Pack 2
Just following up to this post:
I logged a call with JTAC. After being escalated to Engineering, they provided a custom web rewriting filter which resolved the issues I was having with disconnects.
It is now working without issue. It also seems that performance has been increased a bit as well using the filter.
All of our non-Windows users are going to be incredibly happy! Hopefully Juniper will incorporate this into a future update, but if not, feel free to reference case #2013-0904-0643.
We are having drops outs with an SA4500 and Blast as well.
I have logged a case with Juniper and they have provided a pkg file, and a rewrite string, but no information on how to implement it based on your case.
Can you please let us know how to implement it?
I saw your post and I would like to ask you how did you get HTML access with blast gateway working with Juniper SA?
I configured the bookmarks with the url of my view connection server. I'm able to log in with ny user, choose the pool and after that, I have nothing.
I thing the problem is that when the connection starts after choosing pool, it uses port 8443 to connect to blast gateway so the bookmark are not able to change its url which was using port 443.
To get it working, did you used "Rewriting Options" or just the bookmark with "Web Access Control"?
Can you take 5 min to explain me step by step how did you do?
Thank you very much in advance.
I too am trying to set this up and suffering from dissconects. Connection time last between 3 seconds to max of 1 minute.
I can't say that this filter has helped
I've also tried other things like dissabling compression and caching. Nothing seems to help.
Also the URL given in the articale (https:*/*/d/*/js/appblast-client.js) does not match the URL's I can see being requested by the clients when using the policy tracing tool.
Upon doing some further testing the dissconects appear to be realted to using IE as the remote browser.
Connected via IE the longest connection I've had is 1-2 minutes.
If I connect via Chrome or Safari, I have yet to be dissconnected in over 10 mins.
This would seem to point to a different issue then the original timeout issue as its only affecting IE.
We don't have the HTTP(S) Secure Tunnel and Blast Secure Gateway on our Connection Servers enabled so I can't confirm if this is supported or not. Correct me if I'm mistaken, but port 8443 would be for the Blast Secure Gateway.
When I initially set this up, I just created a simple Web bookmark to the Connection Server. I believe I also added this to our Web ACL policy. That was pretty much it and it worked although we had the disconnect issue which has since been resolved by the web rewrite filter mentioned in the posted KB article.
Perhaps you can try to disable the Secure Tunnel and Blast Secure Gateway on a CS to see if that works?
What versions are you running? VMware Horizon View? Juniper SA?