Slow response from RD Gateway

Hi

I have a RD farm with 4 servers on Windows 2012 R2:

rdweb01 - Web and gw role

rdcbroker - Connection Broker

rdsh01 - Session Host

rdsh02 - Session Host

The problem is when I click Connect on the Remote DEsktop Connection it takes up to 30 Seconds just to be asked for the credentials. "Bypass RD Gateway server for local addresses" is unchecked. I also created a registry key to disable task offload.

I have captured the traffic using netmon and I see that there is a gap of 20 Seconds before the RD Gateway server sends the NeXT packet. See the 2nd and 3rd line of the trace.

I have tested on other similar environments using Windows 2012 R2 and there is no delay between these two packets. The sequence is Equal but With no delay.

192 11:06:06 28.11.2013 6.7883759 mstsc.exe ME RD_Gateway TLS TLS:TLS Rec Layer-1 SSL Application Data; TLS Rec Layer-2 SSL Application Data {TLS:71, SSLVersionSelector:70, TCP:69, IPv4:68}

193 11:06:06 28.11.2013 6.8348456 mstsc.exe RD_Gateway ME TCP TCP:Flags=...A...., SrcPort=HTTPS(443), DstPort=61445, PayloadLen=0, Seq=2706257771, Ack=2387337128, Win=78 (scale factor 0x7) = 9984 {TCP:69, IPv4:68}

533 11:06:27 28.11.2013 27.8464594 mstsc.exe RD_Gateway ME TLS TLS:TLS Rec Layer-1 SSL Application Data; TLS Rec Layer-2 SSL Application Data {TLS:71, SSLVersionSelector:70, TCP:69, IPv4:68}

534 11:06:27 28.11.2013 27.8501002 mstsc.exe ME RD_Gateway TCP TCP: [Bad CheckSum]Flags=......S., SrcPort=61449, DstPort=HTTPS(443), PayloadLen=0, Seq=1792247767, Ack=0, Win=8192 ( Negotiating scale factor 0x8 ) = 8192 {TCP:194, IPv4:68}

541 11:06:27 28.11.2013 27.8767744 mstsc.exe RD_Gateway ME TCP TCP:Flags=...A..S., SrcPort=HTTPS(443), DstPort=61449, PayloadLen=0, Seq=2732183767, Ack=1792247768, Win=5840 ( Negotiated scale factor 0x7 ) = 747520 {TCP:194, IPv4:68}

542 11:06:27 28.11.2013 27.8771351 mstsc.exe ME RD_Gateway TCP TCP: [Bad CheckSum]Flags=...A...., SrcPort=61449, DstPort=HTTPS(443), PayloadLen=0, Seq=1792247768, Ack=2732183768, Win=256 (scale factor 0x8) = 65536 {TCP:194, IPv4:68}

Could some  SSL guru tell me what's going on at those steps?

The performance is good after the authentication as well as when no using the RD Gateway.