7.0
Table Of Contents
- View Architecture Planning
- Contents
- View Architecture Planning
- Introduction to View
- Planning a Rich User Experience
- Feature Support Matrix for Horizon Agent
- Choosing a Display Protocol
- Using Hosted Applications
- Using View Persona Management to Retain User Data and Settings
- Using USB Devices with Remote Desktops and Applications
- Using the Real-Time Audio-Video Feature for Webcams and Microphones
- Using 3D Graphics Applications
- Streaming Multimedia to a Remote Desktop
- Printing from a Remote Desktop
- Using Single Sign-On for Logging In
- Monitors and Screen Resolution
- Managing Desktop and Application Pools from a Central Location
- Advantages of Desktop Pools
- Advantages of Application Pools
- Reducing and Managing Storage Requirements
- Application Provisioning
- Deploying Individual Applications Using an RDS Host
- Deploying Applications and System Updates with View Composer
- Deploying Applications and System Updates with Instant Clones
- Managing VMware ThinApp Applications in View Administrator
- Deploying and Managing Applications Using App Volumes
- Using Existing Processes or VMware Mirage for Application Provisioning
- Using Active Directory GPOs to Manage Users and Desktops
- Architecture Design Elements and Planning Guidelines for Remote Desktop Deployments
- Virtual Machine Requirements for Remote Desktops
- View ESXi Node
- Desktop Pools for Specific Types of Workers
- Desktop Virtual Machine Configuration
- RDS Host Virtual Machine Configuration
- vCenter Server and View Composer Virtual Machine Configuration
- View Connection Server Maximums and Virtual Machine Configuration
- vSphere Clusters
- Storage and Bandwidth Requirements
- View Building Blocks
- View Pods
- Advantages of Using Multiple vCenter Servers in a Pod
- Planning for Security Features
- Understanding Client Connections
- Choosing a User Authentication Method
- Restricting Remote Desktop Access
- Using Group Policy Settings to Secure Remote Desktops and Applications
- Using Smart Policies
- Implementing Best Practices to Secure Client Systems
- Assigning Administrator Roles
- Preparing to Use a Security Server
- Understanding View Communications Protocols
- Overview of Steps to Setting Up a View Environment
- Index
Table 5‑4. Ports Opened During View Connection Server Installation (Continued)
Protocol Ports View Connection Server Instance Type
HTTP TCP 22389 Standard and replica
For the Cloud Pod Architecture feature: used for global LDAP replication.
HTTPS TCP 22636 Standard and replica
For the Cloud Pod Architecture feature: used for secure global LDAP replication.
Firewall Rules for Horizon Agent
The Horizon Agent installation program opens certain TCP ports on the firewall. Ports are incoming unless
otherwise noted.
Table 5‑5. TCP Ports Opened During Agent Installation
Protocol Ports
RDP 3389
USB redirection 32111 (This port is also used for time zone
synchronization.)
MMR (multimedia redirection) and CDR (client drive
redirection)
9427
PCoIP 4172 (TCP and UDP)
VMware Blast Extreme 22443 (TCP and UDP)
HTML Access 22443
The agent installation program configures the local firewall rule for inbound RDP connections to match the
current RDP port of the host operating system, which is typically 3389. If you change the RDP port number
after installation, you must change the associated firewall rules.
If you instruct the agent installation program to not enable Remote Desktop support, it does not open ports
3389 and 32111, and you must open these ports manually.
If you use a virtual machine template as a desktop source, firewall exceptions carry over to deployed
desktops only if the template is a member of the desktop domain. You can use Microsoft group policy
settings to manage local firewall exceptions. See the Microsoft Knowledge Base (KB) article 875357 for more
information.
Firewall Rules for Active Directory
If you have a firewall between your View environment and your Active Directory server, you must make
sure that all of the necessary ports are opened.
For example, View Connection Server must be able to access the Active Directory Global Catalog and
Lightweight Directory Access Protocol (LDAP) servers. If the Global Catalog and LDAP ports are blocked
by your firewall software, administrators will have problems configuring user entitlements.
See the Microsoft documentation for your Active Directory server version for information about the ports
that must be opened for Active Directory to function correctly through a firewall.
View Architecture Planning
98 VMware, Inc.