RD Gateway High Availability

Jefferson Co 181 Reputation points
2020-09-24T21:08:40.083+00:00

Hi,

The current setup was users are able to access most of the servers using the public IP which I know is unsafe. So I have this project to setup a Remote Desktop Gateway so we can take out the NAT'ed public IP's
I already setup one RD Gateway and it's currently working. I'd like to setup a server farm for 2 RD Gateway. I added RDG-2 to RDG-1 and status shows 'unreachable' Cannot determine number of connections. Same as when I added RDG-1 to RDG-2 server farm, shows the same error message, not sure where or what I'm missing.

Thanks

Remote Desktop
Remote Desktop
A Microsoft app that connects remotely to computers and to virtual apps and desktops.
4,189 questions
0 comments No comments
{count} votes

Accepted answer
  1. Karlie Weng 13,241 Reputation points Microsoft Vendor
    2020-09-25T06:11:04.043+00:00

    Hey @Jefferson Co

    Please check the following:

    1. Is the newly added gateway server linked to your Active Directory?
    2. Have you add all the RD gateway servers to the server farm?
    3. Does the server has RD Gateway server role installed?

    I followed the instruction below to set up RDgateway HA:
    https://learn.microsoft.com/en-us/windows-server/remote/remote-desktop-services/rds-rdweb-gateway-ha

    The certificate needs to be re-installed.

    28244-image.png

    Also this need to configured on each RD Gateway server:

    28245-image.png28178-image.png

    ----------

    If the Answer is helpful, please click "Accept Answer" and upvote it.
    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

    Best Regards
    Karlie

    1 person found this answer helpful.

3 additional answers

Sort by: Most helpful
  1. Jefferson Co 181 Reputation points
    2020-09-29T00:41:05.15+00:00

    I spun up 2 VM's and my objective is to setup RD gateway HA. GW01: 192.168.2.51GW02: 192.168.2.52
    Both are installed with Win Server 2019 Std. Fully patch. Installed RD Gateway role and both have been added to 'Server Farm' tab under RD Gateway properties and bot shows 'OK' status. 1. Connection Auth: enabled with domain users and domain admins groups added under 'Requirements', Device Redirection: enabled. 2. Resource Auth: added both groups domain users and domain admins, Network Resource: allow users to connect to any network resource, Allow Ports: any port. 3. under NPS > Policies > TS Gateway Auth: Authentication set to Accept users w/o validating credential. 4. under Network policies > Conditions > user groups: add both domain users and admins

    Jeff

    0 comments No comments

  2. Jefferson Co 181 Reputation points
    2020-09-29T00:41:11.71+00:00

    Both has valid certificate. Both have been install with NLB and add to a Cluster name: rdgw.domain.com with cluster IP 192.168.2.50, this cluster IP is NAT'ed outside with a WAN IP. Both RD gateways are working individually but if I use the cluster rdgw.domain.com it doesn't work, Just shows me an error msg saying:
    There was a problem connecting to the remote resource. Ask your network administrator for help.


  3. Jefferson Co 181 Reputation points
    2020-09-29T00:41:44.473+00:00

    sorry had to break it into 2 replies since there's a limit to each reply

    0 comments No comments