I set up Cloudflare RDP a while ago so i can bypass the firewall my company uses at work. And be able to get somewhat decent performance and visuals whilst i connect home. However i noticed some weird inconsistencies when using it on a windows VM. And it's mainly that when having the QEMU guest agent configured on the VM, it would randomly crash the RDP or offer worse performance and more latency. I was under the impression that having the guest agent would help with making snapshots and backups. But I have a weird time understanding why this is happening. I am not sure what's causing this, but i am bringing it to the attention of others just in case anyone else has it configured and are experiencing issues with RDP.
QEMU Guest agent causing performance issues through cloudflare-based RDP
- Thread starter FCHomeLab
- Start date
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an alternative browser.
You should upgrade or use an alternative browser.
I was thinking about that but i made sure to test multiple times with the QEMU agent disabled and enabled and the result was pretty much the same, noticeable delay when the agent was turned on and much more responsive when it was off.Are you sure isn't the clouflare tunnel worse performance and more latency ?
PVE firewall is enabled but mainly for other protocols like SSH, NFS and SMB not for RDP. As for the second question. I am not entirely sure as that is handled from cloudflare's side. But i believe it is using UDPI don't see the relationship with the Agent.
is PVE firewall enabled ?
is RDP over UDP used ?
Seems like i don't have that rule, But after digging a bit through it looks like Cloudflare isn't using a conventional port, instead choosing a random one and then forwarding it towards port 3389 for RDP. However, it has 2 firewall rules for that, one being for TCP and one for UDP. After disabling the rule for allowing TCP connections in, and creating the UDP-in rule to be blocked. The RDP connection still goes through. So i am not sure exactly if that is what's causing it.Try disabling Windows Firewall "Remote Desktop" UDP-In rule to dig out.