Dieter Kempeneers

RDP Multipath: Enhanced connectivity to AVD explained

Published by

Dieter

on

RDP Multipath Header image

Microsoft is putting a lot of effort in remote desktop connectivity with the introduction of RDP Multipath for Azure Virtual Desktop (AVD). This new feature, currently in public preview, improves RDP connectivity by enabling multiple transport channels simultaneously, providing redundant connections and increasing performance and user experience over fluctuating network conditions.

While RDP Multipath is currently exclusive to AVD, it’s important to note that Windows 365, though it uses the same AVD gateway infrastructure, does not yet support this new feature.

What exactly is RDP Multipath?

RDP Multipath continues to build upon RDP shortpath for Public networks. If you don’t know what this does, I explained it fully in my blogpost called “RDP Shortpath over Public Internet, STUN and TURN Explained“.

Before the introduction of RDP Multipath, Remote Desktop Protocol relied on RDP Shortpath to optimize connectivity to your virtual desktop. RDP Shortpath attempts to establish a direct UDP connection using STUN (Session Traversal Utilities for NAT), and if that fails, it falls back to a TURN (Traversal Using Relays around NAT) relay server. These direct connections reduce the number of network hops, improving overall performance and stability.

With RDP Multipath, the same foundation is used, but instead of relying on a single UDP path, multiple parallel UDP connections are established. This creates redundancy and improves session resiliency by dynamically switching between paths when network conditions change or degrade. Currently there is only support for UDP, so if you block RDP Shortpath, you’re out of luck. Microsoft does however state that support for multiple TCP connections in RDP Multipath will become available in the future.

How does it work?

So what exactly happens?

  1. Initialize connection: The user connects with AVD and establishes a TCP based connection over the Azure Virtual Desktop gateway.
  2. RDP Shortpath: While the TCP connection is active, a direct connection between client and Session Host is being established over UDP by using STUN or TURN relay.
  3. RDP Shortpath: If an UDP connection is established, the TCP connection is being dropped and the connection continues to run over UDP.
  4. RDP Multipath: While the primary UDP connection is active, two alternative routes over the internet are being searched to provide a redundant connection. These routes will always use alternate paths over different TURN relay servers.
  5. RDP Multipath: The user is now connected over UDP, and has two active failback routes which will greatly enhance failover support, especially in difficult network scenarios.

Once the multiple connections are established you can verify this in the connection information within an active session, it will show up as “Multipath (UDP/WebSocket) is enabled”.

RDP multipath is active

When opening the connection details we can also see that Multipath is active. In this screenshot I’m being relayed, so using TURN.

RDP Multipath active and using TURN

Microsoft has provided us with a good diagram which showcases this visually:

A diagram showcasing how RDP multipath works

How do you enable it?

The great news about this feature is that, once it hits General Availability (GA), it is enabled by default on Microsoft’s side. No IT intervention is needed to take advantage of it. This once again, highlights the value of using a cloud service, where new capabilities are integrated into your existing environment without having you invest additional time or resources into manual configuration.

As it currently still is in public preview, you can already test it by using the validation Host Pool feature in AVD.

If you happen to have security concerns, you can disable this as well, although not recommended, by disabling UDP connectivity. I got that written down on my “HOWTO: Disable UDP and RDP Shortpath ON a Cloud PC” blogpost, but the steps for AVD are identical.

Let’s wrap up

If you have any questions or concerns about RDP Multipath, just let me know. In most cases, it is best to use it, since there are no real drawbacks. I think it is a great new feature that shows how far Microsoft’s VDI solutions have come. Also, as a closing note, even with redundant connections, the client device, local router, or the session host can still be single points of failure, which is to be expected..

5 responses to “RDP Multipath: Enhanced connectivity to AVD explained”

  1. Real World ‘Like Local’ Experience: Cloud PC Access Across the Ocean – Dieter Kempeneers

    […] add-on to Shortpath Microsoft also enhanced the general user experience with a new feature called RDP Multipath, this establishes multiple UDP sessions, if one would fail the other one will take over […]

    Reply
  2. Adam Bath Avatar
    Adam Bath

    Hi, Can you please confirm if multipath works on MS Link device? Will be great if you could share any experience you have. Thank you!

    Reply
    1. Dieter Avatar
      Dieter

      Hi Adam, Yes it should work on the Windows 365 Link as well!

      Reply
  3. Shalomon Avatar
    Shalomon

    I have a production host pool, where i don’t want to make it a validation environment. Hence how can I get this multipath feature tested out for use cases like this?

    Reply
    1. Dieter Avatar
      Dieter

      I’m afraid you need to have a validation Host Pool or you can wait until it hits GA.

      Reply

Leave a Reply

Previous Post
Next Post

Recent posts

Follow me on

Linkedin Logo
Reddit logo

Dieter Kempeneers

About

Passionate about IT and backed by over a decade of hands-on experience, I’ve seen the major shift from on-premise solutions to cloud-based environments firsthand.

Topics

MVP Badge

Discover more from Dieter Kempeneers

Subscribe now to keep reading and get access to the full archive.

Continue reading