search

flcontainers / guacamole

A Docker Container for Apache Guacamole, a client-less remote desktop gateway. It supports standard protocols like VNC, RDP, and SSH over HTML5. For x64, arm64 and ppc64le.
https://hub.docker.com/r/flcontainers/guacamole
GNU General Public License v3.0
322 stars 60 forks source link

RDP not working anymore #129

Closed zackmuc closed 1 month ago

zackmuc commented 1 month ago

If I try to connect with Guacamole 1.5.5 to my Windows 11 Computer it stays at:

Verbindungsaufbau zu Guacamole. Bitte warten... Connection to Guacamole. Please wait.

Then nothing happens. If i go back to 1.5.4 it works

I use a docker container ARM64 on my Raspberry Pi4

`version: "3" services: guacd:

image: linuxserver/guacd

image: flcontainers/guacamole:latest
container_name: guacd
hostname: guacd
restart: unless-stopped
volumes:
  - /portainer/Files/AppData/Config/guacamole/drive:/drive:rw
  - /portainer/Files/AppData/Config/guacamole/record:/record:rw
environment:
  LOG_LEVEL: debug
  LOGBACK_LEVEL: debug
networks:
  - guacamole_network

guacamole: image: flcontainers/guacamole:latest

image: chainguard/guacamole-server:latest

container_name: guacamole
hostname: guacamole
restart: unless-stopped
volumes:
  - /portainer/Files/AppData/Config/guacamole/postgres:/config
  - /etc/localtime:/etc/localtime:ro
depends_on:
  - guacd
#  - guacamole-db
environment:
  GUACD_HOSTNAME: guacd
  TOTP_ENABLED: 'true'
  EXTENSIONS: 'auth-totp'
  LOG_LEVEL: debug
  LOGBACK_LEVEL: debug
links:
  - guacd
labels:
  - "traefik.enable=true"
  - "traefik.docker.network=traefik-backend"
  - "traefik.http.routers.guacamole-secure.entrypoints=websecure"
  - "traefik.http.routers.guacamole-secure.rule=Host(`guacamole.xxx.xxx)"
  #- "traefik.http.routers.guacamole-secure.middlewares=authelia@docker"
  - "traefik.http.middlewares.guacamole-https.redirectscheme.scheme=https"
  - "traefik.http.routers.guacamole.tls=true"
  - "traefik.http.routers.guacamole.tls.certresolver=letsencrypt"
  #- "traefik.http.routers.guacamole.tls.domains[0].main=*.${DOMAIN}"
  #- "traefik.http.routers.guacamole.tls.options=myTLSOptions@file"
  - "traefik.http.routers.guacamole-secure.service=guacamole"
  #- "traefik.http.routers.guacamole.middlewares=guacamoleMdl"
  #- "traefik.http.middlewares.guacamoleMdl.addprefix.prefix=/guacamole"
  - "traefik.http.services.guacamole.loadBalancer.server.port=8080"
networks:
  - guacamole_network
  - traefik-backend

networks: traefik-backend: external: name: traefik-backend guacamole_network: external: false `

MaxWaldorf commented 1 month ago

Make sure you have the latest 1.5.5 as it was re-uploaded a couple times

zackmuc commented 1 month ago

Did use the latest latest 1.5.5 but still same problem

MaxWaldorf commented 1 month ago

Make sure you use NLA as encryption protocol...

Cannot repro here...

Also check the logs under:

/var/log/supervisior/guacd_err.log

MaxWaldorf commented 1 month ago

Also please do a proper use of this container by not mixing ENV variables with things coming from other images

zackmuc commented 1 month ago

`version: "3" services: guacamole: image: flcontainers/guacamole:latest container_name: guacamole hostname: guacamole restart: unless-stopped volumes:

networks: traefik-backend: external: name: traefik-backend guacamole_network: external: false `

That is compose file now but still does not work :(

MaxWaldorf commented 1 month ago

Sorry but without logs, can't help...

You can also try the "testing" version...

zackmuc commented 1 month ago

Logs:

guacd.log Thu Aug 1 12:02:56 UTC 2024 Starting Guacd

guacd_error.log guacd[107]: INFO: Guacamole proxy daemon (guacd) version 1.5.5 started guacd[107]: INFO: Listening on host 0.0.0.0, port 4822 guacd[107]: INFO: Creating new client for protocol "vnc" guacd[107]: INFO: Connection ID is "$a3031e65-7947-4453-80ee-fa6d58fca6ac" guacd[202]: INFO: Cursor rendering: local guacd[202]: INFO: User "@e259a788-20de-4361-8a39-b069aaea0e4c" joined connection "$a3031e65-7947-4453-80ee-fa6d58fca6ac" (1 users now present) guacd[107]: INFO: Creating new client for protocol "rdp" guacd[107]: INFO: Connection ID is "$29a4f389-5a31-4076-8de6-f5fe85f11a8e" guacd[219]: INFO: Security mode: NLA guacd[219]: INFO: Resize method: none guacd[219]: INFO: No clipboard line-ending normalization specified. Defaulting to preserving the format of all line endings. guacd[219]: INFO: User "@93a86833-cd67-4304-84ff-7a3f95a4cb13" joined connection "$29a4f389-5a31-4076-8de6-f5fe85f11a8e" (1 users now present) guacd[219]: INFO: Loading keymap "base" guacd[219]: INFO: Loading keymap "de-de-qwertz"

zackmuc commented 1 month ago

Also with testing not wroking 1.5.4 works

MaxWaldorf commented 1 month ago

Just tested on a windows 11 machine:

guacd[103]: INFO:       Connection ID is "REDACTED"
guacd[2750]: INFO:      Security mode: NLA
guacd[2750]: INFO:      Resize method: display-update
guacd[2750]: INFO:      Clipboard line ending normalization: Windows (CRLF)
guacd[2750]: INFO:      User "REDACTED" joined connection "REDACTED" (1 users now present)
guacd[2750]: INFO:      Loading keymap "base"
guacd[2750]: INFO:      Loading keymap "REDACTED"
guacd[2750]: INFO:      Connected to RDPDR 1.13 as client 0x0003
guacd[2750]: INFO:      Connected to RDPDR 1.13 as client 0x0001
guacd[2750]: INFO:      RDPDR user logged on

I recommend that you try on a clean base and maybe check if your reverse proxy is really working as intended...

ventilaar commented 1 month ago

I had the same problem when it suddenly did not work anymore (because of auto upgrades). No further logs, it just hangs. However this seems to be an issue within Guacamole's Guacd itself as noted in this mailing list, not this container package.

For people who encounter this as well, in the meantime try to disable the Enable audio input (microphone) option in the connection settings. This worked for the person in the mailing list and with me as well, a fix is coming in the 1.6 release or a 1.5.6 bugfix.

MaxWaldorf commented 1 month ago

unable to repro...