HI, 唐工
我非常高兴看到你的反馈。对于你的问题我说几点我的看法。
Q1:跟用户使用微软的远程桌面直接登录到XenApp 服务器去访问没啥区别
A:从表现上看是一样的。但是要注意的是,XA走的是ICA协议,TS是RDP。在传输效率上是不一样的;
Q2:桌面是win2003或者2008服务器桌面,不能发布XP或者win7的桌面给用户使用
A:Windows2008/2008R2在桌面表现上可以做到和Win7完全一致,包括Aero桌面体验、无线网络打开、音频体验,唯一和Win7不同的是你需要在“组件”和“功能中”手工打开它们;
Q3:用户可以看到后台的管理组件包括citrix AMC管理控制台,CPS等,安全性非常低
A:如果只是简单的发布一个桌面给用户使用,我同意你的观点。所以我想特别说明几点:
1. 在文章中特别强调了场景是:Users are mostly within one or two applications all day. One or two applications no browser-based activity。 所以不适合于多应用发布。
2. XenApp服务器必须做安全加固操作。强调一点是任何应用虚拟化的项目XenApp服务器都必须做安全加固操作,也就是说不是这种方式才要做的。锁定/安全加固服务器之后桌面完全是定制化的,包括桌面的图标,开始菜单的展现,文件夹的访问,快捷方式(开机关机注销等),停止命令提示符等等。对于一般的用户来说,可以基本达到比较安全的效果。这里给一些推荐的文章包括:
http://technet.microsoft.com/en-us/library/cc264467.aspx
http://blogs.technet.com/b/tonyso/archive/2008/02/27/how-to-harden-terminal-services.aspx
Locking Down Windows Server 2003 Terminal Server Sessions
http://support.citrix.com/article/CTX114938
http://support.microsoft.com/kb/278295
http://www.msterminalservices.org/articles/Locking-Down-Windows-Terminal-Services.html
http://www.brianmadden.com/blog/BrianMadden/How-do-you-lock-down-a-Terminal-Server
http://blogs.technet.com/tonyso/archive/2008/02/27/how-to-harden-terminal-services.aspx
3. 采用Citrix的其他技术配合使用,包括使用Profile Manager、PVS技术对XA Server的发布来加强系统架构的灵活性和安全性。
Regards,
Eric
From: tangfeiliang [mailto:tangfl@stone-soft.com.cn]
Sent: Wednesday, March 23, 2011 11:51 PM
To: Eric Yao
Subject: Re: 基于主机的共享桌面还是基于主机的虚拟桌面?
姚工,您好!
非常感谢,这些资料太重要了!有个问题我想知道,XenApp Server 共享桌面(基于主机的共享桌面)是不是指在XenApp的应用发布向导里直接把XenApp服务器桌面发布出来的那个桌面? 但是那个桌面发布出来的话,是XenApp Server 服务器的桌面,跟用户使用微软的远程桌面直接登录到XenApp 服务器去访问没啥区别,而且桌面是win2003或者2008服务器桌面,不能发布XP或者win7的桌面给用户使用,而且用户可以看到后台的管理组件包括citrix AMC管理控制台,CPS等,安全性非常低,没有实用价值,除非用户是管理员,把XenApp Server 服务器的桌面发布给远程的管理员来维护的话还比较实用,不知道我说的是不是你指的那个Hosted Shared Desktop ?
2011-03-23
Best Regards
唐飞良 Philiane.Tang
系统工程师 System Engineer
北京四通管理软件技术有限公司 Beijing Stone Software Technology Co.,Ltd
Tel: 86-20-38767374
Mobile: 86-13822156503
Website:www.stone-soft.com.cn
地址:广州市体育西路189号城建大厦17楼G单元
Address:Room 17G, No.189 Tiyuxi Road, Guangzhou, P.R.China
发件人: Eric Yao
发送时间: 2011-03-22 12:35:27
主题: 基于主机的共享桌面还是基于主机的虚拟桌面?
HI, 唐飞良
我们都知道Citrix有应用虚拟化和桌面虚拟化,但是应用虚拟化就是seamless windows? 难道用户想要个性化桌面就只能使用VDI桌面虚拟化的方案?答案是:NO.
我推荐大家看看下面的两篇文章,他详细解释了XenApp Server 共享桌面(基于主机的共享桌面还)和VDI虚拟桌面的不同,它告诉我们除了你熟悉的应用虚拟化和桌面虚拟化,其实还有一种叫做基于主机的共享桌面,就是XenApp上的桌面共享,请不要忽视它的存在,在很多用户场景中,他完全可以替代VDI方案。http://community.citrix.com/display/ocb/2011/02/04/Hosted+Shared+or+Hosted+Virtual+Desktops+%28XenApp+or+XenDesktop%29
在什么场景下使用基于主机的共享桌面呢? 这取决于用户的需求。我们把用户分组分析一下:
| Group | Description | Recommendation |
| Group 1 | Users are mostly within one or two applications all day. This application is the main line of business application. Their performance is based on speed and accuracy. | Hosted Shared Desktop
|
| Group 2 | Users have a core set of applications they require to do their jobs. Oftentimes, these users must be able to modify system-level settings like environment variables, or install their own applications | Hosted Virtual Desktop (Dedicated)
|
| Group 3 | Users focus on content creation utilizing Microsoft Office and Adobe Photoshop. They users also browse for content and graphics online via a browser. | Hosted Shared Desktop
|
| Group 4 | Users utilize a few applications that consume significant amounts of CPU resources when doing certain activities (video rendering or code compiling) | Hosted Virtual Desktop (Streamed to Blade)
|
| Group 5 | Users require admin-level priviledges for certain applications | Hosted Virtual Desktop (Pooled)
|
| Group | Description |
| Light | One or two applications no browser-based activity |
| Normal | Multiple applications with limited browser-based activity |
| Power | Many simultaneous applications with extensive browser-based activity and Internet-based applications. |
| Heavy | Few applications but have heavy system resource requirements. Data processing, compiling, or graphics manipulation are common applications. |
有着简单应用的用户难道就一定要一个只属于自己的基于VDI的虚拟桌面吗?看看下面的开销就知道那种性价比最高了?
| User Group | Operating System | vCPU Allocation | Memory Allocation | Avg IOPS (Steady State) | Estimate Users/Core |
| Light | Windows XP | 1 | 768MB-1 GB | 3-5 | 10-12 |
| | Windows 7 | 1 | 1-1.5 GB | 4-6 | 8-10 |
上图基于VDI的解决方案中超过80%的内存其实是被OS消耗掉的,剩下的内存才是给Applications的,但是如果Apps运行在XenApp Server上,我们发现大部分内存又是可以被共享的。
如果你担心的是XenApp Server 共享桌面看起来不像是自己的操作系统,现在到了Windows2008时代,它也能配置成像Windwos7了。
在读完上面两篇文章后,欢迎你就这个议题来信讨论。
Best Regards
Eric Yao(姚臻) CISSP CISA
System Engineer
Citrix Systems Information Technology (Beijing) Ltd.
Guangzhou Branch
Tel: +86-20-2885 8203
Fax: +86-20-2885 8369
Cellphone: +86-186 6608 8565
Customer Service: 108006100263; 108002610263
Mailbox: eric.yao@citrix.com
Msn: eric.yaozhen@gmail.com
CITRIX .. The Leader in Application, Desktop and Server Virtualisation
This e-mail message and all documents that accompany it may contain privileged or confidential information, and are intended only for the use of the individual or entity to which addressed. Any unauthorized disclosure or distribution of this e-mail message is prohibited. If you have received this e-mail message in error, please notify me immediately. Thank you
www.citrix.com
© Citrix Systems, Inc. (NASDAQ: CTXS)
转载于:https://blog.51cto.com/birdguy/1019836
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
