similar issue as Guacamole Problem
Guacamole is not working on a fresh install UCS 4.3
I have tried to access directly by IP address,and port the ports… no luck.
# Proxy Error
The proxy server received an invalid response from an upstream server.
The proxy server could not handle the request *[GET /guacamole/](http://10.10.50.2/guacamole/)* .
Reason: **Error reading from remote server**
Apache/2.4.25 (Univention) Server at 10.10.50.2 Port 80
root@ucs2:/etc/apache2/sites-available# cat 000-default.conf
# comments removed to clean it up...
<VirtualHost *:80>
IncludeOptional /etc/apache2/ucs-sites.conf.d/*.conf
ProxyPass /guacamole/ http://127.0.0.1:40001/guacamole/ retry=0
ProxyPassReverse /guacamole/ http://127.0.0.1:40001/guacamole/
</VirtualHost>
root@ucs2:/etc/apache2/sites-available#
root@ucs2:/etc/apache2/sites-available# ls
000-default.conf 000-default.conf.debian default-ssl.conf default-ssl.conf.debian univention.conf univention-portal.conf univention-proxy.conf univention-saml.conf univention-server-overview.conf
root@ucs2:/etc/apache2/sites-available# cat default-ssl.conf
# Comments all removed to clean it up.
<IfModule mod_ssl.c>
<VirtualHost *:443>
IncludeOptional /etc/apache2/ucs-sites.conf.d/*.conf
SSLEngine on
SSLProxyEngine on
SSLProxyCheckPeerCN off
SSLProxyCheckPeerName off
SSLProxyCheckPeerExpire off
SSLCertificateFile /etc/univention/ssl/ucs2.sgvfr.lan/cert.pem
SSLCertificateKeyFile /etc/univention/ssl/ucs2.sgvfr.lan/private.key
SSLCACertificateFile /etc/univention/ssl/ucsCA/CAcert.pem
ProxyPass /guacamole/ http://127.0.0.1:40001/guacamole/ retry=0
ProxyPassReverse /guacamole/ http://127.0.0.1:40001/guacamole/
</VirtualHost>
</IfModule>
root@ucs2:/etc/apache2/sites-available# ls -al ../sites-enabled/
total 8
drwxr-xr-x 2 root root 4096 Jan 22 10:03 .
drwxr-xr-x 10 root root 4096 Jan 20 22:08 ..
lrwxrwxrwx 1 root root 35 Apr 4 2017 000-default.conf -> ../sites-available/000-default.conf
lrwxrwxrwx 1 root root 35 Mar 27 2018 default-ssl.conf -> ../sites-available/default-ssl.conf
lrwxrwxrwx 1 root root 34 Apr 4 2017 univention.conf -> ../sites-available/univention.conf
lrwxrwxrwx 1 root root 41 Nov 25 14:58 univention-portal.conf -> ../sites-available/univention-portal.conf
lrwxrwxrwx 1 root root 39 Sep 20 2017 univention-saml.conf -> ../sites-available/univention-saml.conf
lrwxrwxrwx 1 root root 50 Jul 13 2018 univention-server-overview.conf -> ../sites-available/univention-server-overview.conf
root@ucs2:/etc/apache2/sites-available#
root@ucs2:~# docker ps
CONTAINER ID IMAGE COMMAND CREATED STATUS PORTS NAMES
49408d41f649 docker.software-univention.de/guacamole-guacamole:0.9.13-univention13 "/opt/guacamole/bi..." About an hour ago Up About an hour 0.0.0.0:40001->8080/tcp guacamole_guacamole_1
e3b12922d903 docker.software-univention.de/guacamole-guacd:0.9.13-univention13 "/usr/local/sbin/g..." About an hour ago Up About an hour 4822/tcp guacamole_guacd_1
root@ucs2:/etc/apache2/sites-available# ucr search guac
appcenter/apps/guacamole/container: 49408d41f649db4b263037f300761c47a63d6f5592f00a37a4bfd5d2c5096f51
appcenter/apps/guacamole/hostdn: cn=guaca-51894346,cn=memberserver,cn=computers,dc=sgvfr,dc=lan
appcenter/apps/guacamole/image: docker.software-univention.de/guacamole-guacamole:0.9.13-univention13
appcenter/apps/guacamole/ports/8080: 40001
appcenter/apps/guacamole/status: installed
appcenter/apps/guacamole/ucs: 4.3
appcenter/apps/guacamole/version: 0.9.13-univention14
ucs/web/overview/entries/service/guacamole/description/de: Guacamole ist ein clientloses fern Desktop-Gateway
Defines the description of the corresponding entry of the UCS start site (optionally localized). Full format: ucs/web/overview/entries/{admin,service}/<entryID>/description[/<locale>].
ucs/web/overview/entries/service/guacamole/description: Guacamole is a clientless remote desktop gateway
Defines the description of the corresponding entry of the UCS start site (optionally localized). Full format: ucs/web/overview/entries/{admin,service}/<entryID>/description[/<locale>].
ucs/web/overview/entries/service/guacamole/icon: /univention/js/dijit/themes/umc/icons/scalable/apps-guacamole_20180525181438.svg
Defines the URL for the icon of the corresponding entry of the UCS start site (can also be a data URL). Full format: ucs/web/overview/entries/{admin,service}/<entryID>/icon.
ucs/web/overview/entries/service/guacamole/label/de: Guacamole
Defines the label of the corresponding entry of the UCS start site (optionally localized). Full format: ucs/web/overview/entries/{admin,service}/<entryID>/label[/<locale>].
ucs/web/overview/entries/service/guacamole/label: Guacamole
Defines the label of the corresponding entry of the UCS start site (optionally localized). Full format: ucs/web/overview/entries/{admin,service}/<entryID>/label[/<locale>].
ucs/web/overview/entries/service/guacamole/link: /guacamole/
Defines the link URL of the corresponding entry of the UCS start site. Full format: ucs/web/overview/entries/{admin,service}/<entryID>/link.
ucs/web/overview/entries/service/guacamole/port_http: 80
Forces the port for URL of the corresponding entry of the UCS start site. Used when the start site is opened with HTTP or when no port_https variable is set. Full format: ucs/web/overview/entries/{admin,service}/<entryID>/port_http.
ucs/web/overview/entries/service/guacamole/port_https: 443
Same as ucs/web/overview/entries/.*/port_http, but used when opening the start site with HTTPS or when no port_http variable is set. Full format: ucs/web/overview/entries/{admin,service}/<entryID>/port_https.
root@ucs2:/etc/apache2/sites-available#
root@ucs2:/etc/apache2/sites-available# docker logs 49408d41f649
root@ucs2:/etc/apache2/sites-available# docker logs e3b12922d903
guacd[1]: INFO: Guacamole proxy daemon (guacd) version 0.9.13-incubating started
guacd[1]: INFO: Listening on host 0.0.0.0, port 4822
root@ucs2:/etc/apache2/sites-available#
I’m going to assume the containers are mounted? I don’t know much about how containers work.
root@ucs2:/etc/apache2/sites-available# df -h
Filesystem Size Used Avail Use% Mounted on
udev 10M 0 10M 0% /dev
tmpfs 300M 19M 282M 7% /run
/dev/mapper/vg_ucs-root 46G 26G 19G 59% /
tmpfs 750M 4.0K 750M 1% /dev/shm
tmpfs 5.0M 0 5.0M 0% /run/lock
tmpfs 750M 0 750M 0% /sys/fs/cgroup
/dev/sda1 472M 108M 340M 25% /boot
10.10.100.10:/srv/data/export/NFS/ucs2/var/univention-backup 1.8T 702G 1.1T 41% /var/univention-backup
overlay 46G 26G 19G 59% /var/lib/docker/overlay/bf434cd0d94f28bbd122f74ebbd14dc4aaaa3e1056322944bffb3dfbfd985675/merged
shm 64M 0 64M 0% /var/lib/docker/containers/e3b12922d903df6943c4b5a88abea56a7b17172a087621092dac7d0a21baed61/shm
overlay 46G 26G 19G 59% /var/lib/docker/overlay/d419c7f29cea9c4a1030578e93a0858f04df7f28f29966275266805e32876d05/merged
shm 64M 0 64M 0% /var/lib/docker/containers/49408d41f649db4b263037f300761c47a63d6f5592f00a37a4bfd5d2c5096f51/shm
root@ucs2:/etc/apache2/sites-available#
I"m not sure what else I can look at for this… I would really love to get rid of the dedicated VPN and port forwarding for RDP if Guacamole passes all my testing.