Vdi jmh connect

Virtual Youtubers The Great Youtube Takeover!

2017.12.29 22:29 Ariovelz Virtual Youtubers The Great Youtube Takeover!

Hi there! Have you ever heard of those Youtubers who use computer-generated avatars? They're called Virtual Youtubers! This is a subreddit for you to discuss and share content about them!
[link]

2023.06.08 17:38 blood047 VDI Mass TCP Retransmission

Hello,
Since Monday we have 10-20 daily 4-8sec Freezes of any applications (Outlook, NOTEPAD, Adobe Reader, Teams,…) that have a connection with our file server and all our windows 10 vdi have roaming profiles and folder redirections of desktop, documents,… to the file server
When I wireshark, I see those mass tcp retransmission (2-6 per seconds) see this screenshot : https://postimg.cc/w7F7sWjq
it happens at random time during the day but when it happens it happens for every user at the same exact time
We checked the resources, the latency and the events of our esxi + vsan and it's fine
No network congestion, no antivirus or firewall blocking
Here is recap of our setup if this can help :
- 8 esxi for the vsi cluster
- 5 esxi for the vdi cluster
- 300 vm windows 10 on Vmware Horizon with 2 connections servers and 2 load balancers
Please try to help me I'm; going crazy trying to troubleshoot this....
Thanks a lot !
submitted by blood047 to sysadmin [link] [comments]

2023.06.08 15:38 Randompedestrian07 Getting green screen flickering via Thunderbolt dock

I have a 14 inch M1 Pro connected to an Alienware AW3423DWF via a Corsair TBT200. After the update it seems that there’s a semi-random green screen flickering to 2/3 of the screen that doesn’t completely abate until I unplug the dock.
Interestingly, it seems to most consistently happen when I log into my work VDI via Citrix. It never happened before the beta, so more of an additional warning to those wanting to use the beta on a mission critical machine (I have another system I can remote from, so no harm, but still).
submitted by Randompedestrian07 to MacOSBeta [link] [comments]

2023.06.07 02:28 SHWAGEFFECT Advice on Travelling to Egypt

Hello my brothers and sisters!!
Hope you are all doing well, I'm coming to you guys for advice and some perspective, I'm 27 - my parents are egyptian but I'm born in America and lived here most of my life, I've never been to Egypt, because it's been very difficult to plan a trip! But my current job is fully remote and they are allowing me to go there to work for a while so I am planning a trip for around 2-3 month so I can visit my family there and also spend time in Egypt as well. I do have two main questions:
I want to stay directly on the water or very close, so I'm thinking between Alexandria, or Hurghada. My mom recently went back to home to visit her family in downtown Cairo and based on what I saw and what she told me it's super crazy busy in that area (lots of honking lots of noise), which is very cool and unique to be honest (it's kind of like new york haha) but this might be too much for me and I'm not used to it, I like something sort of in the middle where it's not too crazy busy, but at the same time not the middle of nowhere. Do you guys have any feedback on living in staying in Alexandria or Hurghada, or are there any nice towns in Egypt close to the water that you might suggest??
My second question, is what would be the most reliable way to either have good internet, or to check the internet of a specific area, I do see some coverage maps for the different companies but I'm not sure how accurate they are, if I were to find an area or town that seems good, should I call the company and check to see if they offer solid internet there?
I totally understand that the internet situation in Egypt can be difficult in some areas, and I'm ok with this, I'm not going to be sitting on youtube all day, I mainly need somewhat of a decent connection so I can do things like Connect to teams, check my emails, connect to VDI, use Citrix things like this. If my trip goes well, I would really considering staying longer in Egypt, but the internet portion is very important because I cannot have my internet disconnecting from teams every 2 minutes. My mom was calling me on Whatsapp from Cairo for a while a couple months ago and the connection actually seemed very good and solid, it didn't disconnect once and I was very surprised! I'm willing to pay as needed but obviously like I want to pick your brain about this.
I appreciate all your help and if any of you are free to chat please let me know and send me a message and I can talk to you, if you have any question for me about anything in America please let me know and I'm happy to answer also, God bless you all and take care. Thanks.
submitted by SHWAGEFFECT to askegypt [link] [comments]

2023.06.06 14:26 Lifeat0328AM USB-C port function in ASUS Vivobook X515EA

Hi
Can anyone help me in figuring out whether I can use the Type C port in my laptop ASUS Vivobook X515EA to connect to a dock/multiple displays? The manual says it is a usb 3.2 gen 1 type-c but I cannot determine whether:
  1. it supports or meant to support USB-C docks to be used for multiple displays and/or charging. I have ordered 2 from amazon and none of them have worked so far :(
  2. If not, will the USB 3.2 gen-1 port support any kind of dock so i can connect it to two monitors for my work station?
  3. Is there a recommended dock for ASUS laptops? especially if i want it to charge my laptop too? My new job has me using VDI through personal laptop and I would very much like to have a good workstation set up especially with at least two monitors.
Thanks in advance for your help ! :)
submitted by Lifeat0328AM to techsupport [link] [comments]

2023.06.04 16:02 Ospr3y_ Windows Server 2022 VDI service configuration

Trying to configure windows server 2022 to use the VDI service but running into drawbacks. Need assists of where i am going wrong. It's not more of a notable error, just that first, the virtual machine am trying to create on Hyper v to use as a template doesn't connect to the internet so i can't update the windows or install required software and also, even if I try using it as a template as it is after running Sysprep, it doesn't populate as a template during creation of the template from the wizard guide.
Its my first time interacting with the server and so am learning on the go.
submitted by Ospr3y_ to techsupport [link] [comments]

2023.06.04 15:53 Ospr3y_ Windows Server 2022 VDI creation

Trying to configure windows server 2022 to use the VDI service but running into drawbacks. Need assists of where i am going wrong. It's not more of a notable error, just that first, the virtual machine am trying to create on Hyper v to use as a template doesn't connect to the internet so i can't update the windows or install required software and also, even if I try using it as a template as it is after running Sysprep, it doesn't populate as a template during creation of the template from the wizard guide.
Its my first time interacting with the server and so am learning on the go.
submitted by Ospr3y_ to WindowsServer [link] [comments]

2023.06.04 04:08 PopeFranzia $6-700-ish laptop in US

LAPTOP QUESTIONNAIRE
submitted by PopeFranzia to SuggestALaptop [link] [comments]

2023.06.04 00:35 shawn19 Healthy Jacksonville Hosting LGBT Connections with Phoenix Center at JMH - WLDS

Healthy Jacksonville Hosting LGBT Connections with Phoenix Center at JMH - WLDS submitted by shawn19 to Health2020 [link] [comments]

2023.06.03 23:15 CGFA No Wifi - Gonna lose my mind

Been pulling my hair out for hours trying to figure this one out, hopefully some of you can help.
Bought the parts, put the computer together, updated the bios, installed Windows 11, I'm at the home screen. I feel like i'm almost at the finish line but I can't seem to connect to wifi even though my motherboard advertised wifi capabilities (MSI B550M PRO-VDI WIFI). I've read online this can be an issue but I'm not able to find step by step where/how to update the motherboard so that this issue would be fixed. Please help, thank you :)
Motherboard: MSI B550M PRO-VDI WIFI
CPU: AMD Ryzen 7 5800x 3.8GHz
submitted by CGFA to buildapc [link] [comments]

2023.06.03 15:36 Potential_Device_875 Conditional Access Policy - Allow a Different Tenant for VDI client

Hi, I am struggling to get this figured out and was hoping someone could chime in:
Goal: I want to allow 'authorized devices' to connect to an Azure VDI environment I created. These 'authorized devices' are the physical laptops that will be connecting to the Azure VDI via the remote desktop client.
'Authorized Devices' means one of these two things, specifically:
  1. Devices that are in the same tenant as the Azure VDIs. These devices are managed by Intune, just like the VDIs are.
  2. Devices that are in one specific 'other' tenant. They have their own Azure\Intune environments, and are not in the same environment as the VDIs.

For #1, I was able to make a Conditional Access Policy that works. The CAP setting was 'Require device to be marked as compliant'. No problem here.
For #2, I cannot figure this out. The physical client devices could be in this one separate tenant, so I need to find some PROPERTY that the C.A.P will recognize. I tried a few things, particularly in the 'filter for devices' portion of Conditional Access, but nothing is working out.

Can someone please help me with item #2?
submitted by Potential_Device_875 to Intune [link] [comments]

2023.06.01 11:50 PerceptionSmooth8959 HTTP Redirection Connection Server 2212

Hi all,
I have a basic issue with http to https redirection.
From what i've gathered in the documentation, any http connection that is not targeted at the Admin Console (http://vdi.corporation.com/admin) should be silently redirected to the https page.
This does not seem to work, when i open http://vdi.corporation.com/ i get a return code of 404 and a Horizon Error page saying Error: Not Found.
I tried searching the Horizon documentation but it only gives information on how to change default ports or disable http->https redirection.
We are using 2 Connection Servers with version 2212. Load Balancing only takes place via DNS round robin.
Any ideas what i could look into further?
Thanks :)
submitted by PerceptionSmooth8959 to VMwareHorizon [link] [comments]

2023.05.31 13:21 WetRubicon How to harden Kasm against malicious local users? (Anti-DoS, deleting instances)

New to Kasm (and containers, fwiw) and love it so far, but I just saw a PoC in a test environment with a red team and it took them literally 10 seconds to get from Chrome to the local terminal to
rm -** ~
(** stands for two letters which you can probably guess) - this destroyed the instance and instantly terminated the connection and left the screen stuck on "Creating a secure connection..." with no indication that it no longer exists. Kasm also continued to show the orphaned session on the dashboard, not giving any indication that that instance is no more. This can make troubleshooting rather difficult, I'd imagine, if you don't know what the user did.
I understand that it is rather unlikely that permanent damage can get done this way but at the very least it is easy to do a denial-of-service attack, waste compute resources and cause confusion with the orphaned session and the misleading connection message.
Personally, I was surprised that users can even open the terminal, let alone execute commands (even on Windows RDS or VDI, cmd.exe and anything else is usually blocked by software restriction policies, WDAC or AppLocker). You can use the one app you're supposed to but not waste time or resources opening anything else that may be installed on the OS.
So, what is the best practice here to harden and configure Kasm to make sure that users can't just willy-nilly raze instances or use third programs they're not supposed to use?
Even if no data is compromised, at the very least it costs time to troubleshoot, answer tickets from confused users, "delete" the orphaned instance or guide users to start a new session.
The standard behavior that I would have expected in this case:
  1. If an instance gets orphaned because its files are all rm'ed, auto-delete it from the workspace and/or show a messages that it has been destroyed. Don't get stuck on "Creating connection...".
  2. Optionally disable or instantly kill any third-party processes that are not supposed to run in any given workspace (e.g. if you're running a secure browser workspace, you should be able to only allow the chrome process to be started, and nothing else - not the file manager, not the terminal etc.).
  3. Add a log entry somewhere or warning to admins that unauthorized behavior by a non-root user was detected, so you can be aware that someone is - at the very least - testing your defenses.
A quick search did not give me much info in the way of "hardening Kasm" or how to deal with these scenarios.
As I am still learning, I would like to know more. Hope you can point me in the right direction.
Thanks.
submitted by WetRubicon to kasmweb [link] [comments]

2023.05.25 22:37 Chipperchoi Setting up Horizon connection server

Hello all,
I have been tasked with setting up external access for Horizon VDI users. I normally deal with VMWare on the server level and don't really have much experience with remote access for Horizon users.
From what I have read, seems to be basically a remote gateway access for users to hit a connection server, which seems pretty straight forward but just so that I have something to read up on incase of issues during setup, is there any good guides on the set up portion of it?
TIA!
submitted by Chipperchoi to VMwareHorizon [link] [comments]

2023.05.25 16:43 CRISTIANPES Security problem?

Security problem?
I'm not sure what is going on.
https://preview.redd.it/3cvqznf2pz1b1.png?width=2178&format=png&auto=webp&s=0999dcfd455f894ae2168c33286e30994013807a
submitted by CRISTIANPES to fortinet [link] [comments]

2023.05.25 04:15 neuroreaction File transfer over RDP session, fails and causes the session to drop and reconnect?

TLDR: is there a setting for RDP that would cause a session reset if a file or type of file is copied through the session?
Like to read see below: For some specific reason we use this, I am new~ish to the team so don’t roast me just yet, but I have been getting complaints from day 3 that this process fails. When asked if it ever worked I get a “yea?”. It’s happening across multiple different systems across multiple networks. The only constant is windows 10 is the OS connecting to the servers rdp session. All the windows 10 are a base image to a bunch of vdi pools, the servers are scattered across networks and these vdi are used to manage it all. The user can have admin access to one or both side and get this. It seems to be 99% of users, like 1 person can get it to work and it’s pissing his peers off.
Work flow User pc>vdi>rdp
Any direction would be appreciated I thought I knew terminal server until now!
submitted by neuroreaction to sysadmin [link] [comments]

2023.05.23 16:29 SwannSwanchez Dev Server Datamine 2.25.1.115 -> 2.26.0.19 Part 8

2.25.1.115 -> 2.26.0.19 Part 8

Removed vehicles :
New vehicles : (with economy data)
Tech-tree changes :
Statcard and X-Ray changes :
Economy and modification changes : https://github.com/OshidaBCF/WT-Economic-Changes/blob/2.26.0.19/Economy.txt
Current Dev version : 2.26.0.20
Current Dev-Stable version : 2.25.1.117
Current Live version : 2.25.1.115
submitted by SwannSwanchez to Warthunder [link] [comments]

2023.05.22 16:59 MohnJaddenPowers Trying to get a mapped object variable to work - keeps prompting me for individual variables

Thanks in advance for bearing with me - my background is not in dev/coding, and anything I learned about TF has kinda been slapdash. If I use a term wrong, assume I don't know what I'm talking about and may be expressing myself incorrectly.
I've redone my tfvars file to work with coalescing. I have it structured as follows:
Team1 = { "MaximumSessions": null, "ApplicationGroupType": "Desktop", "DepartmentName": "foo", "City": "NY", "LoadBalancerType": "Persistent", "SecurityGroup": "GUID", "ApplicationType": "Desktop", "team_name": "fooTeam", "location": "eastus", "TechnicalContact": "jdoe,", "Owner": "asmith,", "VDIType": "Personal" }
and so on for 11 teams.
And my variable block in main.tf is as follows:
variable "teams" { type = map(object({ team_name = string location = string Owner = string TechnicalContact = string SecurityGroup = string DepartmentName = string City = string ApplicationGroupType = string ApplicationType = string LoadBalancerType = string MaximumSessions = number }))
}
An example resource looks like this:
resource "azurerm_virtual_desktop_host_pool" "vdi-hostpool" { location = coalesce(each.value.location, each.key) resource_group_name = azurerm_resource_group.vdi-rg[each.key].name for_each = var.teams name = "${each.value.team_name}-VDI" friendly_name = "${each.value.team_name} VDI" validate_environment = false start_vm_on_connect = true custom_rdp_properties = "snipped" description = "${each.value.team_name} team VDI" type = coalesce(each.value.VDIType, each.key) maximum_sessions_allowed = var.MaximumSessions load_balancer_type = coalesce(each.value.LoadBalancerType, each.key) preferred_app_group_type = coalesce(each.value.ApplicationType, each.key) personal_desktop_assignment_type = "Automatic" tags = { Owner = coalesce(each.value.Owner, each.key) TechnicalContact = coalesce(each.value.TechnicalContact, each.key) Location = coalesce(each.value.City, each.key) DepartmentName = coalesce(each.value.DepartmentName, each.key) TeamName = coalesce(each.value.team_name, each.key) } lifecycle { ignore_changes = [ # Ignore changes to the custom_rdp_properties field - this is because Azure VDI adds/modifies the position of some text in the string, which causes Terraform to come into conflict. ] } }
When I run tf plan, it prompts me to specify var.teams. It should be reading var.teams from tfvars.
Is there something I need to do with for_each to get this to work?
submitted by MohnJaddenPowers to Terraform [link] [comments]

2023.05.15 02:52 BISHBOSHBASH12 task 3

TASK 3
Project Proposal for Remote Connectivity Upgrade for York Site
Introduction:
The York site is currently experiencing connectivity issues for both permanent members of staff and remote workers who require access to network services. These connectivity issues are impeding productivity and causing frustration among staff. To address these issues, we propose an upgrade to the network that will improve connectivity and access to the network.
Overview of Upgrade:
Our proposed upgrade will involve several components, including new hardware, software, and cloud services. First, we will upgrade the existing network infrastructure to support a VPN connection, which will enable remote workers to access network services securely. Second, we will implement cloud-based solutions to facilitate remote access to applications and data. Third, we will upgrade the existing wireless network to improve coverage and speed, which will improve productivity for staff working on site.
Proposed Solution:
The proposed solution is detailed in the network diagram accompanying this proposal. The new network infrastructure will include a VPN gateway, firewall, and switch. We will implement a cloud-based virtual desktop infrastructure (VDI) solution that will enable remote workers to access their desktops and applications securely from anywhere. We will also implement a cloud-based file-sharing solution to enable staff to access shared files securely from anywhere. Finally, we will upgrade the existing wireless network with new access points to improve coverage and speed.
Equipment, Software, and Cloud Services:
We have carefully considered equipment, software, and cloud services options to ensure that they provide value for money while meeting the requirements outlined in the control document D. Based on our research, we recommend using Dell as the preferred supplier for all equipment and PC World Business for software and cloud services. For hardware, we recommend the Dell SonicWall VPN gateway, Dell PowerConnect switch, and Dell SonicWall firewall. For software, we recommend Microsoft Office 365 and Dropbox Business for cloud file sharing. For cloud-based VDI, we recommend Amazon WorkSpaces, which is a cost-effective solution that provides a secure and scalable VDI platform.
Costs:
Based on our recommended solutions, the estimated costs for equipment, software, and cloud services are as follows:
The total cost for the proposed solution is approximately £60,000, which we believe provides value for money while meeting the requirements outlined in the control document D.
Network Security Issues:
Our proposed solution is designed to address potential network security issues by implementing a VPN gateway and firewall to secure the network from unauthorized access. We also recommend implementing multi-factor authentication for remote workers to provide an additional layer of security. For cloud-based solutions, we recommend using services that offer encryption and access controls to ensure that data is secure.
Final Summary:
In summary, our proposed upgrade will address the current connectivity issues at the York site by providing secure remote access to network services and applications, as well as improving on-site wireless coverage and speed. We have carefully considered equipment, software, and cloud services options to provide value for money while meeting the requirements outlined in the control document D. We believe our proposed solution will significantly improve productivity for staff at the York site.
https://asana.com/resources/project-proposal
Project Proposal for Network Connectivity Upgrade
Introduction:
The current network setup at the Southampton office consists of a single server running Windows Server 2016 which provides DHCP, DNS, domain controller, VPN server, file server, print server, web server, and email server services. The Southampton office supports approximately 20 full-time staff and 30 remote workers located in the South of England who use company-issued laptops to access the network. The York office is a new office with a single SOHO router providing services to the network, including DHCP and DNS. The York office staff is connecting via VPN to the Southampton site each day to access necessary resources. The objective of this proposal is to upgrade the network connectivity between the Southampton and York offices to improve connectivity and access to the network.
Overview of Proposed Solution:
To improve connectivity and access to the network, we propose to implement a site-to-site VPN between the Southampton and York offices. This will allow all users to access file shares and other network resources adequately. We recommend using a Cisco Meraki MX series security appliance as the VPN gateway at both the Southampton and York offices. The Meraki MX series security appliance is a high-performance device that offers advanced security features, including intrusion prevention, malware protection, and content filtering. It also provides a web-based dashboard that allows for easy configuration and management of the VPN connection.
We recommend that all remote workers connect to the network via a secure VPN connection using the Cisco AnyConnect VPN client. The AnyConnect VPN client supports secure protocols like SSL and IPsec, and it is available for Windows, Mac, and mobile devices. To minimize connection dropouts and lack of VPN availability, we recommend using a high-speed internet connection at both the Southampton and York offices.
To ensure that VPN traffic does not endpoint inside the Southampton network, we recommend using split-tunneling. Split-tunneling allows remote workers to access the internet directly while sending corporate traffic through the VPN connection.
We recommend using Dell PowerEdge servers as the VPN servers at both the Southampton and York offices. The Dell PowerEdge servers are high-performance servers that can handle large amounts of VPN traffic and provide reliable connectivity. We also recommend using Dell Wyse thin clients for the hot desk facilities at the Southampton office. The Wyse thin clients are lightweight, easy to manage, and offer secure access to network resources.
Justification of Equipment, Software or Cloud Services:
We recommend using the Cisco Meraki MX series security appliance as the VPN gateway at both the Southampton and York offices because it offers advanced security features and easy management through a web-based dashboard. The Dell PowerEdge servers are high-performance servers that can handle large amounts of VPN traffic and provide reliable connectivity. The Dell Wyse thin clients are lightweight and easy to manage, making them an ideal solution for the hot desk facilities at the Southampton office.
Estimated Costs:
The estimated cost for the Cisco Meraki MX series security appliance is approximately £3,000 per device, and we recommend purchasing two devices, one for each office. The estimated cost for the Dell PowerEdge servers is approximately £5,000 per server, and we recommend purchasing two servers, one for each office. The estimated cost for the Dell Wyse thin clients is approximately £300 per device, and we recommend purchasing ten devices for the hot desk facilities at the Southampton office.
Explanation of Potential Network Security Issues and Mitigations:
One potential security issue is that VPN traffic could be intercepted by attackers if the VPN connection is not properly secured. To mitigate this risk, we recommend using SSL or IPsec as the VPN protocol, which offers strong encryption to protect the VPN traffic from interception. We also recommend using a strong password policy and two-factor authentication to ensure that only authorized users can access the network resources.
Another potential security issue is that the VPN traffic could endpoint inside the Southampton network
submitted by BISHBOSHBASH12 to u/BISHBOSHBASH12 [link] [comments]

2023.05.15 02:41 BISHBOSHBASH12 task 3

TASK 3
Project Proposal for Remote Connectivity Upgrade for York Site
Introduction:
The York site is currently experiencing connectivity issues for both permanent members of staff and remote workers who require access to network services. These connectivity issues are impeding productivity and causing frustration among staff. To address these issues, we propose an upgrade to the network that will improve connectivity and access to the network.
Overview of Upgrade:
Our proposed upgrade will involve several components, including new hardware, software, and cloud services. First, we will upgrade the existing network infrastructure to support a VPN connection, which will enable remote workers to access network services securely. Second, we will implement cloud-based solutions to facilitate remote access to applications and data. Third, we will upgrade the existing wireless network to improve coverage and speed, which will improve productivity for staff working on site.
Proposed Solution:
The proposed solution is detailed in the network diagram accompanying this proposal. The new network infrastructure will include a VPN gateway, firewall, and switch. We will implement a cloud-based virtual desktop infrastructure (VDI) solution that will enable remote workers to access their desktops and applications securely from anywhere. We will also implement a cloud-based file-sharing solution to enable staff to access shared files securely from anywhere. Finally, we will upgrade the existing wireless network with new access points to improve coverage and speed.
Equipment, Software, and Cloud Services:
We have carefully considered equipment, software, and cloud services options to ensure that they provide value for money while meeting the requirements outlined in the control document D. Based on our research, we recommend using Dell as the preferred supplier for all equipment and PC World Business for software and cloud services. For hardware, we recommend the Dell SonicWall VPN gateway, Dell PowerConnect switch, and Dell SonicWall firewall. For software, we recommend Microsoft Office 365 and Dropbox Business for cloud file sharing. For cloud-based VDI, we recommend Amazon WorkSpaces, which is a cost-effective solution that provides a secure and scalable VDI platform.
Costs:
Based on our recommended solutions, the estimated costs for equipment, software, and cloud services are as follows:
The total cost for the proposed solution is approximately £60,000, which we believe provides value for money while meeting the requirements outlined in the control document D.
Network Security Issues:
Our proposed solution is designed to address potential network security issues by implementing a VPN gateway and firewall to secure the network from unauthorized access. We also recommend implementing multi-factor authentication for remote workers to provide an additional layer of security. For cloud-based solutions, we recommend using services that offer encryption and access controls to ensure that data is secure.
Final Summary:
In summary, our proposed upgrade will address the current connectivity issues at the York site by providing secure remote access to network services and applications, as well as improving on-site wireless coverage and speed. We have carefully considered equipment, software, and cloud services options to provide value for money while meeting the requirements outlined in the control document D. We believe our proposed solution will significantly improve productivity for staff at the York site.
https://asana.com/resources/project-proposal
Project Proposal for Network Connectivity Upgrade
Introduction:
The current network setup at the Southampton office consists of a single server running Windows Server 2016 which provides DHCP, DNS, domain controller, VPN server, file server, print server, web server, and email server services. The Southampton office supports approximately 20 full-time staff and 30 remote workers located in the South of England who use company-issued laptops to access the network. The York office is a new office with a single SOHO router providing services to the network, including DHCP and DNS. The York office staff is connecting via VPN to the Southampton site each day to access necessary resources. The objective of this proposal is to upgrade the network connectivity between the Southampton and York offices to improve connectivity and access to the network.
Overview of Proposed Solution:
To improve connectivity and access to the network, we propose to implement a site-to-site VPN between the Southampton and York offices. This will allow all users to access file shares and other network resources adequately. We recommend using a Cisco Meraki MX series security appliance as the VPN gateway at both the Southampton and York offices. The Meraki MX series security appliance is a high-performance device that offers advanced security features, including intrusion prevention, malware protection, and content filtering. It also provides a web-based dashboard that allows for easy configuration and management of the VPN connection.
We recommend that all remote workers connect to the network via a secure VPN connection using the Cisco AnyConnect VPN client. The AnyConnect VPN client supports secure protocols like SSL and IPsec, and it is available for Windows, Mac, and mobile devices. To minimize connection dropouts and lack of VPN availability, we recommend using a high-speed internet connection at both the Southampton and York offices.
To ensure that VPN traffic does not endpoint inside the Southampton network, we recommend using split-tunneling. Split-tunneling allows remote workers to access the internet directly while sending corporate traffic through the VPN connection.
We recommend using Dell PowerEdge servers as the VPN servers at both the Southampton and York offices. The Dell PowerEdge servers are high-performance servers that can handle large amounts of VPN traffic and provide reliable connectivity. We also recommend using Dell Wyse thin clients for the hot desk facilities at the Southampton office. The Wyse thin clients are lightweight, easy to manage, and offer secure access to network resources.
Justification of Equipment, Software or Cloud Services:
We recommend using the Cisco Meraki MX series security appliance as the VPN gateway at both the Southampton and York offices because it offers advanced security features and easy management through a web-based dashboard. The Dell PowerEdge servers are high-performance servers that can handle large amounts of VPN traffic and provide reliable connectivity. The Dell Wyse thin clients are lightweight and easy to manage, making them an ideal solution for the hot desk facilities at the Southampton office.
Estimated Costs:
The estimated cost for the Cisco Meraki MX series security appliance is approximately £3,000 per device, and we recommend purchasing two devices, one for each office. The estimated cost for the Dell PowerEdge servers is approximately £5,000 per server, and we recommend purchasing two servers, one for each office. The estimated cost for the Dell Wyse thin clients is approximately £300 per device, and we recommend purchasing ten devices for the hot desk facilities at the Southampton office.
Explanation of Potential Network Security Issues and Mitigations:
One potential security issue is that VPN traffic could be intercepted by attackers if the VPN connection is not properly secured. To mitigate this risk, we recommend using SSL or IPsec as the VPN protocol, which offers strong encryption to protect the VPN traffic from interception. We also recommend using a strong password policy and two-factor authentication to ensure that only authorized users can access the network resources.
Another potential security issue is that the VPN traffic could endpoint inside the Southampton network
submitted by BISHBOSHBASH12 to u/BISHBOSHBASH12 [link] [comments]

2023.05.13 15:45 LokiLong1973 Horizon 8 - Unable to connect my Connection Server to vCenter

Horizon 8 - Unable to connect my Connection Server to vCenter
Hi Everyone.
Brand new to this sub-reddit and having a question that has started to get me to the brink of madness :)
I'm trying to deploy Horizon 8 using the VMUG Subscription Advantage in my company's lab and running into a most annoying issue, that after trying the most obvious thing and strictly following the instructions on docs.vmware.com just doesn't seem to work.
I've done the following:
  • Installed Windows Server 2022 DataCenter
  • Created computer account for the Connection Server in an OU.
  • Installed Connection Server 8 (2103)
  • Fixed the NO_COMPTABILE_CIPHER errors by following this KB article: https://kb.vmware.com/s/article/2032400 - Disabled weaker ciphers per group policy for the Horizon OU (which atm only contains the Horizon Connection Server
My connection server is erroring when trying to add the vCenter to Horizon:
https://preview.redd.it/bu4hk7nlnlza1.png?width=529&format=png&auto=webp&s=a98f084d50fe82fa945ead40267d19b5720e1858
I'm stuck here... This is what's being logged:
2023-05-13T06:18:14.904-07:00 ERROR (11AC-05A8) [ActiveDirectoryTopologyManager] updateDomainMaps, exception caught processing domain=D1, exception=null 2023-05-13T06:18:15.424-07:00 ERROR (11AC-05A8) [FaultUtilBase] InvalidRequest: {#UNTRUSTED_DOMAIN_INVALID_INPUT#} Invalid untrusted domain details, provide valid details to bind 2023-05-13T06:18:15.427-07:00 ERROR (11AC-05A8) [RestApiServlet] Unexpected fault:(vdi.fault.InvalidRequest) { errorMessage = {#UNTRUSTED_DOMAIN_INVALID_INPUT#} Invalid untrusted domain details, provide valid details to bind } for uri /view-vlsi/rest/v1/ADDomain/bind 2023-05-13T06:18:58.668-07:00 ERROR (11AC-05BC) [Connection4] Connection to the vCenter Server https://vcenter.domain.tld:443/sdk failed. 2023-05-13T06:18:58.683-07:00 ERROR (11AC-05BC) [FaultUtilBase] UnexpectedFault: Unexpected failure during certificate validation. 2023-05-13T06:18:58.684-07:00 ERROR (11AC-05BC) [RestApiServlet] Unexpected fault:(vdi.fault.UnexpectedFault) { errorMessage = Unexpected failure during certificate validation., causeString = null, causeStackTrace = null, errorCode = CERTIFICATE_VALIDATION_FAILED, errorAttributes = null } for uri /view-vlsi/rest/v1/Certificate/Validate 2023-05-13T06:19:03.238-07:00 INFO (11AC-09D8) [CEIP] CEIP: Enabled 2023-05-13T06:25:23.204-07:00 INFO (0E4C-149C) <5276> [ws_ldap] 0 collision entry references resolved. 2023-05-13T06:25:23.204-07:00 INFO (0E4C-149C) <5276> [ws_ldap] 0 deleted entry references removed. 2023-05-13T06:25:23.204-07:00 INFO (0E4C-149C) <5276> [ws_ldap] 0 collision entries removed.
My vCenter is configured as a Subordinate Certificate Authority of an Active Directory PKI, and suppies the certificates to all ESXi hosts and components.
To confirm: When connecting to vCenter from any browser, it validates as legit as can be seen from the key lock.
Trusted vCenter
Any help on how to proceed would be greatly appreciated.
submitted by LokiLong1973 to VMwareHorizon [link] [comments]

2023.05.12 16:39 Sengfeng New VMWare/vSAN/Horizon/AppVolumes deployment

Note: I'm not the one designing this deployment, but I'm listening to the project guys beat their heads against a digital brick wall. Anyone have a well architected example that would do what we're wanting?
Environment: Two datacenters, approximately 700 miles apart. 15ms latency on average. I believe it's a 1gig connection, might be more. We have users in both locations, currently using a lot of dissimilar desktops (one side persistent VDI, the other with non-persistent, DEM profiles, and non-writeable AppVolumes.) We just deployed two big 40+ server stacks of vxRail HCI servers. These are currently set up as two separate vCenters in each datacenter (4 total - Why? It was apparently some recommendation of the vendor. Seems like that makes things more difficult for replication right off the bat.)
Management wants us to be able to have everything cross-replicated, highly available, there there's a single connection broker address that will connect users from inside/outside to the closest available datacenter.
Right now we're finding the replication of AppVolumes to the other datacenter is not working well (it sometimes decides to run automatically, but usually not). We'd like to have AppVol assignments automatically flow to the HA server, but all it's apparently doing is importing the AppVols - If we needed to use it, we'd need to scramble and add assignments to the 40+ AV's.
User profiles are stored on a NAS share currently, replicated with some third party replication software to another NAS at the other datacenter. Plan here is to use something like DFS or something similar to point to DEM and other profile settings.
I've read some of the vmware docs on stretched clusters, but that's been absolutely nixed from the discussion due to not having sub 10ms response times between datacenters. (the literature sounds like that would be a super simple way of doing everything we want)
That's what I know if this right now, I can find more if anyone has advice. Note: I'm good with traditional vCenter, local storage, etc., but the whole cross datacenter HA VDI is a bit beyond me at this place (and no working knowledge of vxRail or vSAN capabilities).
Any ideas to throw against the wall?
submitted by Sengfeng to vmware [link] [comments]

2023.05.11 21:04 annymals Network Issue with Only One Device But Not With Others

Hello all and thanks in advance for any advice or suggestions you can provide.
I have been trying to get help from my place of employment's IT and my internet service provider but it seems like neither is able to help me figure out what's going on. IT keeps referring me back to my provider but when my provider looks into it, they can't find any issues or anything abnormal that is going on.
I work from home so I have a local fiber optic internet servicer and VoIP company providing me services and I'm hardwire to my VDI. To connect to calls on my work's phone system, my work VDI has a program that it uses to call my VoIP number and from there I can receive calls from clients. This was never a issue before, but developed recently in the last couple of weeks where my phones calls are delaying. It seems that there a delay hearing clients and a delay in clients hearing me. The longer I'm on the line, the more and more it starts delaying, but if I restart everything, it's fine for a bit before it starts up again.
I have tried replacing cables and get my phone itself replaced but I'm still experiencing issues. I have even test my phone itself without connecting it to my work's phone system and it works fine without any delays and the longest test I did was about 30 minutes, multiple times, and at different times in the day. It also needs to be noted that the only thing that hasn't been tried yet is that my VDI has not been replaced because IT keeps telling me to have my internet provider figure it out.
I absolutely don't have any problems with my network on any of my other devices beside my work computer. No interruptions or anything like that. My boyfriend plays call of duty online with his friends and there's never any lag or disruptions. We'll have multiple devices going on at the same time either streaming or downloading and we have absolutely no issues. It's just my work VDI. Work says that my packet loss is 7% and my latency is 2000 ms on VDI which is hardwired to everything. I have tested for packet loss and latency on my other devices which include a 2015 macbook pro, 2020 macbook pro, and a super old asus laptop that I don't even know what year we got it in but I know it came with windows 8 if that explains how old it is. But on those devices, the average download speed is 300 mbps, upload is 200 mbps, latency is around 40-80 ms, and there's 0% packet loss on all the devices.
I've spoken extensively to my provider about the issues I've been having, but they don't see any issues at all. My house is new, my neighborhood is new, and all the devices to connect us to internet is new because we were previously renting the equipment and now we're not. We have a media converter box and connected to it are eeros that we have throughout the home. I've unplugged and replugged everything multiple times and reset everything multiple times.
I'm just out of ideas at this point and can't figure out what the issue is and IT hasn't been very helpful for me. So please, absolutely any advice is appreciated. I'm going out of my mind trying to get to the bottom of this.
submitted by annymals to techsupport [link] [comments]