scvmclient firewall rule set gets disabled on reboot
search cancel

scvmclient firewall rule set gets disabled on reboot

book

Article ID: 316634

calendar_today

Updated On:

Products

VMware vSphere ESXi

Issue/Introduction

Post Datastore upgrade and  ESXi host upgrade from 7.0.u3 to 8.0.u1 scvmclient firewall rule set gets disabled on reboot.

Environment

  • VMware vSphere ESXi 8.0

Cause

  •  The ScvmClientConnectionRule or daemon-scvmclient value should be True whereas after upgrade it was changed to False.
  • Output of the Firewall rule on ESXi host 7.0.u3 (pre-upgrade)

# esxcli network firewall ruleset list | grep -i scvm

ScvmClientConnectionRule true

  • Output of the Firewall rule on ESXi 8.0.u1 (post-upgrade)

# esxcli network firewall ruleset list | grep -i scvm

   daemon-scvmclient false

Resolution

  • Reach out to CISCO for permanent fix and information

Workaround:

  • Enable the firewall rule to True to ensure Datastore is mounted back, this has to be run on all nodes where the Datastores are in unmounted state

# esxcli network firewall ruleset set --enabled=true --ruleset-id=daemon-scvmclient 

  • Validate that the firewall ruleset is enabled.

# esxcli network firewall ruleset list | grep -i scvm


Expected output: 

daemon-scvmclient true

Additional Information

Powered by Wolken Software