Application Acceleration
Reply
New User
windman
Posts: 2
Registered: ‎01-22-2008
0

WX/WXC and MS Terminal Service

Good day!
Does anybody know what compression will be with MS Terminal services and what I should to tune in MS Terminal Service to get a best compression?
Distinguished Expert
muttbarker
Posts: 2,363
Registered: ‎01-29-2008
0

Re: WX/WXC and MS Terminal Service

[ Edited ]
You need to disable encryption and compression from within MS Terminal Services as a starter.

Message Edited by muttbarker on 01-29-2008 03:10 AM
Kevin Barker
JNCIP-SEC
JNCIS-ENT, FWV, SSL, WLAN
JNCIA-ER, EX, IDP, UAC, WX
Juniper Networks Certified Instructor
Juniper Networks Ambassador

Juniper Elite Reseller
J-Partner Service Specialist - Implementation

If this worked for you please flag my post as an "Accepted Solution" so others can benefit. A kudo would be cool if you think I earned it.
Recognized Expert
DannyJ
Posts: 319
Registered: ‎11-02-2007
0

Re: WX/WXC and MS Terminal Service

Hi,
 
As keith points out you need to disable the default compression in RDP, or at best you can set the encryption to low which will encrypt data from client to server (i.e. logon) but data returned to client is in the clear. We get upto circ 60% for RDP occasionally a little higher and at worst 50%. Be ware that as Win2003 and 2008 arrive using the RDP 5.2 or 6.0 client allows you to use SSL to encrypt the data rather then propietary encryption we can better interact with out 5.5 code and provide a more comprehensive solution.
 
-Danny
Danny Jump
Technical Marketing Manager - Access and Acceleration Business Unit
Juniper Employee
Dimitri
Posts: 21
Registered: ‎11-01-2007
0

Re: WX/WXC and MS Terminal Service

Just a quick add-on on how to do that on your Windows server:
To change the encryption level, you must be an administrator. In Programs | Administrative Tools, select Terminal Services Configuration and perform these steps:
1. In the left console pane, select Connections.
2. In the right details pane, right click RDP-TCP and select Properties.
3. Click the General tab.
4. Under Encryption level, select the desired level in the drop down box and click OK.

• High: encrypts both the data sent from client to server and the data sent from server to client using a 128 bit key.
• Medium: encrypts both the data sent from client to server and the data sent from server to client using a 56 bit key if the client is a Windows 2000 or above client, or a 40 bit key if the client is an earlier version.
• Low: encrypts only the data sent from client to server, using either a 56 or 40 bit key, depending on the client version. Useful to protect usernames and passwords sent from client to server.

And, as Danny said if the PC-Clients are using RDP 5.2/6.0, you can configure the Windows 2003/2008 servers "Security Layer" (in the same General tab as "Encryption Level") to use SSL encryption ("Negotiate" option). With our SSL acceleration (in 5.5 release) the WX will be able to accelerate that traffic even with encryption is at High level.

-Dimitri
Copyright© 1999-2013 Juniper Networks, Inc. All rights reserved.