[VMC on AWS][Internal] Unable to add HCX Management Gateway Firewall rule for HTTPS service
search cancel

[VMC on AWS][Internal] Unable to add HCX Management Gateway Firewall rule for HTTPS service

book

Article ID: 314148

calendar_today

Updated On:

Products

VMware HCX VMware Cloud on AWS

Issue/Introduction

Impact/Risks:
Users will be unable to add firewall HTTPs management firewall rules for HCX.

This article provides information regarding the above error received.


Symptoms:

Unable to add Management Gateway Firewall rule for user-defined as well as custom groups for HTTPS service.

The following errors are received :

Validation for entity with HCX Inbound failed for Constraints [mgw_group_communication_constraint_2:
if sourceGroups excludes [/infra/domains/mgw/groups/VCENTER],
destinationGroups includes [/infra/domains/mgw/groups/VCENTER]]


 

Cause

While creating Inbound and Outbound rules with the HTTPS service selected, validation fails due to stale HCX management entries present in the SDDC.

Resolution

The stale entry requires clean-up by the service team.
Please contact VMCS Support for assistance in removing the sale entry.


Additional Information