guacamole-user mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Eric Sten <iam.erics...@gmail.com>
Subject Re: Websocket tunnel connection time out issues
Date Sat, 09 Sep 2017 19:36:04 GMT
Nick,

  I am able to establish a SSH session out to the destination host.
Apparently FreeBSD has a system called Mandatory Access Control that is
like SELinux.  I don’t think it is running but I will investigate that path.

  Thank you for your help!

      Eric Sten


Eric Sten
Visit Trixies Tales, adventures of a domestic dog. — www.trixiestales.com

On September 9, 2017 at 3:28:28 PM, vnick (vnick@apache.org) wrote:

EricSten wrote
> vnick:
>
> Yes, both guacd and Tomcat are running on the same system.
>
> The output from running the guacd service with debugging and output to
> console results in the following:
>
> guacd[51911]: INFO: Guacamole proxy daemon (guacd) version
> 0.9.13-incubating started
> guacd[51911]: DEBUG: Successfully bound socket to host 127.0.0.1, port
> 4822
> guacd[51911]: INFO: Listening on host 127.0.0.1, port 4822
> guacd[51911]: INFO: Creating new client for protocol "rdp"
> guacd[51911]: INFO: Connection ID is
> "$425c3cfe-029f-4465-b2fa-059d51f253b8"
> guacd[51911]: INFO: Connection "$425c3cfe-029f-4465-b2fa-059d51f253b8"
> removed.
> guacd[51911]: INFO: Creating new client for protocol "ssh"
> guacd[51911]: INFO: Connection ID is
> "$2653e39d-6cdb-4b74-bf14-136ded481a0d"
> guacd[52064]: INFO: Current locale does not use UTF-8. Some characters
> may not render correctly.
> guacd[51911]: INFO: Connection "$2653e39d-6cdb-4b74-bf14-136ded481a0d"
> removed.
> guacd[51911]: INFO: Creating new client for protocol "ssh"
> guacd[51911]: INFO: Connection ID is
> "$05f4e35b-47ee-4872-8886-034978745fa0"
> guacd[52144]: INFO: Current locale does not use UTF-8. Some characters
> may not render correctly.
> guacd[51911]: INFO: Connection "$05f4e35b-47ee-4872-8886-034978745fa0"
> removed.
> guacd[51911]: INFO: Creating new client for protocol "ssh"
> guacd[51911]: INFO: Connection ID is
> "$0a4cb99c-9122-4b65-a502-6f7ed17714fb"
> guacd[52176]: INFO: Current locale does not use UTF-8. Some characters
> may not render correctly.
> guacd[51911]: INFO: Connection "$0a4cb99c-9122-4b65-a502-6f7ed17714fb"
> removed.
> guacd[51911]: INFO: Creating new client for protocol "ssh"
> guacd[51911]: INFO: Connection ID is
> "$14016334-3cf7-4721-8185-5368572f3243"
> guacd[52179]: INFO: Current locale does not use UTF-8. Some characters
> may not render correctly.
> guacd[51911]: INFO: Connection "$14016334-3cf7-4721-8185-5368572f3243"
> removed.
>
> No specific errors but it appears that the connection attempt is dropped
> immediately.

On the system where Guacamole is running can you verify that you can make
the SSH and/or RDP connections from there to the destination hosts? It
looks to me like the Guacamole client<->guacd traffic is happening, but for
some reason it cannot make the connection out from guacd to the other
hosts.
I'm also not real familiar with FreeBSD, so I'm not sure if there's any
sort
of Discretionary Access Control system or application firewall (like
SELinux
or AppArmor for Linux) that runs that would block outbound traffic by
default?

If I get a chance I'll try to spin up a FreeBSD VM and see if I can
replicate it or if I can get it to work.

-Nick



-- 
Sent from: http://apache-guacamole-incubating-users.2363388.n4.nabble.com/

Mime
View raw message