Hi Tamas,
/sec:tls will not work in this case because TSG is currently only supported
with RDP security. TLS and NLA security require an implementation of TLS
over the TS Gateway transport, which require more work to complete. Until
this is done, you'll unfortunately need to allow all security levels on the
target server.
On Wed, Feb 20, 2013 at 2:35 PM, Tamás Gulácsi <gt-...@gthomas.homelinux.org
> wrote:
> Hi,
>
> I'd like to get help: what shall I do differently to be able to connect to
> a Windows Server 2008 R2 through its Terminal Server Gateway?
>
> Command line:
> $ xfreerdp -version
> This is FreeRDP version 1.1.0-dev (git 1.0.1-1972-g9fd9b)
> $ xfreerdp /gu:user /gd:domain /gp:password /u:user /d:domain /v:ats /g:
> gate.gateway.ga /cert-ignore /sec:tls
>
> I've used sec:tls 'cause it works that way when I'm connecting directly
> (from intranet).
>
>
> It stalls with (compiled with DEBUG_ALL):
> DBG_TSG TsProxySetupReceivePipe (1156): TsProxySetupReceivePipe
> rpc_vers: 5
> rpc_vers_minor: 0
> ptype: PTYPE_REQUEST (0)
> pfc_flags (0x03) = { PFC_FIRST_FRAG PFC_LAST_FRAG }
> packed_drep[4]: 10 00 00 00
> frag_length: 68
> auth_length: 16
> call_id: 6
> Sending PDU (length: 68)
> 0000 05 00 00 03 10 00 00 00 44 00 10 00 06 00 00 00 ........D.......
> 0010 14 00 00 00 00 00 08 00 00 00 00 00 15 c6 f4 65 ...............e
> 0020 44 fa f2 42 8e da 78 d1 42 16 15 f3 0a 05 00 00 D..B..x.B.......
> 0030 00 00 00 00 01 00 00 00 9d db c6 49 f7 7d 25 a1 ...........I.}%.
> 0040 04 00 00 00 ....
> TS Gateway Connection Success
> rpc_vers: 5
> rpc_vers_minor: 0
> ptype: PTYPE_REQUEST (0)
> pfc_flags (0x03) = { PFC_FIRST_FRAG PFC_LAST_FRAG }
> packed_drep[4]: 10 00 00 00
> frag_length: 128
> auth_length: 16
> call_id: 7
> Sending PDU (length: 128)
> 0000 05 00 00 03 10 00 00 00 80 00 10 00 07 00 00 00 ................
> 0010 4e 00 00 00 00 00 09 00 00 00 00 00 15 c6 f4 65 N..............e
> 0020 44 fa f2 42 8e da 78 d1 42 16 15 f3 00 00 00 32 D..B..x.B......2
> 0030 00 00 00 01 00 00 00 2e 03 00 00 2e 29 e0 00 00 ............)...
> 0040 00 00 00 43 6f 6f 6b 69 65 3a 20 6d 73 74 73 68 ...Cookie: mstsh
> 0050 61 73 68 3d 55 4e 4f 53 4f 46 54 5c 74 67 75 6c ash=UNOSOFT\tgul
> 0060 61 63 73 69 0d 0a 73 00 0a 05 02 00 00 00 00 00 acsi..s.........
> 0070 01 00 00 00 f7 95 9f 06 0e a3 37 d7 05 00 00 00 ..........7.....
>
>
> with |grep '^DBG'
> DBG_RTS rts_connect (88): VIRTUAL_CONNECTION_STATE_INITIAL
> DBG_RPC rpc_ncacn_http_send_out_channel_request (174):
> DBG_RPC rpc_ncacn_http_send_out_channel_request (174):
> DBG_RPC rts_send_CONN_A1_pdu (659): Sending CONN_A1 RTS PDU
> DBG_RPC rpc_ncacn_http_send_in_channel_request (85):
> DBG_RPC rpc_ncacn_http_send_in_channel_request (85):
> DBG_RPC rts_send_CONN_B1_pdu (712): Sending CONN_B1 RTS PDU
> DBG_RTS rts_connect (118): VIRTUAL_CONNECTION_STATE_OUT_CHANNEL_WAIT
> DBG_RTS rts_connect (162): VIRTUAL_CONNECTION_STATE_WAIT_A3W
> DBG_RTS rts_recv_CONN_A3_pdu (689): ConnectionTimeout: 120000
> DBG_RTS rts_connect (200): VIRTUAL_CONNECTION_STATE_WAIT_C2
> DBG_RTS rts_recv_CONN_C2_pdu (753): ConnectionTimeout: 120000
> DBG_RTS rts_recv_CONN_C2_pdu (754): ReceiveWindowSize: 65536
> DBG_RTS rts_connect (241): VIRTUAL_CONNECTION_STATE_OPENED
> DBG_RPC rpc_send_bind_pdu (101): Sending bind PDU
> DBG_RPC rpc_send_rpc_auth_3_pdu (257): Sending rpc_auth_3 PDU
> DBG_TSG tsg_connect (1188): rpc_connect success
> DBG_TSG TsProxyCreateTunnel (462): TsProxyCreateTunnel
> DBG_TSG TsProxyAuthorizeTunnel (641): TsProxyAuthorizeTunnel
> DBG_TSG TsProxyMakeTunnelCall (823): TsProxyMakeTunnelCall
>
>
> Any idea? I don't dare to share the full debug log, as this is my
> production login... Should I create a test login?
>
> Thanks in advance,
> GThomas
>
> ------------------------------------------------------------------------------
> Everyone hates slow websites. So do we.
> Make your web apps faster with AppDynamics
> Download AppDynamics Lite for free today:
> http://p.sf.net/sfu/appdyn_d2d_feb
> _______________________________________________
> Freerdp-devel mailing list
> Freerdp-devel@lists.sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/freerdp-devel
>
------------------------------------------------------------------------------
Everyone hates slow websites. So do we.
Make your web apps faster with AppDynamics
Download AppDynamics Lite for free today:
http://p.sf.net/sfu/appdyn_d2d_feb
_______________________________________________
Freerdp-devel mailing list
Freerdp-devel@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/freerdp-devel
