Problem:
I can sometimes connect using my 2008R2 RDG (Remote Desktop Gateway), and sometimes not. When I can connect, the connection is typically stable and performs as expected and will be so for hours at a time given that the connection is used (avoiding inactivity
timeouts, etc.) When I cannot connect, my only recourse is to keep trying, wait a few hours maybe, try again, try the other gateway, and eventually it'll work again. Both gateways were setup the same, and they both behave the same.
When I look on the logs of the RDG servers (Event Logs > App/Svc Logs > Microsoft > Windows > Terminal Services-xxx) I see many "Info" logs that only indicate clients connecting and disconnecting.... in many cases the clients disconnect after 0 seconds; no errors/warnings.
When I look at the client logs (I've tried RD Conn Mgr v2.7 and mstsc.exe v6.3.9600) I see several entries similar to:
RDPClient_TCP: An error was encountered when transitioning from TcpStateConnectingTransport to TcpStateDisconnected in response to 2 (error code 0x80004004). I'm identifying the RDG by IP address from the clients (certs are issued to the IP address).
I can ping RDGs no problem, and accessing https://<rdg_IPaddress>/ works just fine with no security warnings at all times.
When already connected to a client, a new connection attempt will sometimes trigger the functioning sessions to freeze, and I can no longer connect/re-connect to any internal clients.
Setup:
I have 2 2008R2 RDGs (Remote Desktop Session Host, License Server, Gateway roles/features installed) that are NOT farmed together (unique IPs/hostnames), but are part of a small local DMZ domain. These are using self-signed certs that have been installed
on the relevant remote clients. They are used to connect to many different 2008R2 nodes on an 'internal' network.
Firewall is forwarding TCP 80, 443 for remote RDG sessions, and 3389 for the internal RDP nodes.
Some clients experience this more than others. It's not consistent between clients... one client may be functioning properly, and another may be unable to connect. Typically one RDG will be working, and the other not, however sometimes they both work.
Help!!! Any other logs to look at?