After Storage vMotion all DFW rules are removed from the VM
Article ID: 317170
Updated On:
Products
VMware NSX
Issue/Introduction
To assist in identifying the reason a virtual machine may have lost all distributed firewall rules.
Symptoms:
NSX 3.2.0 or 3.2.1 are in use
NSX is installed using a security only deployment
A storage vMotion is performed
Symptoms:
NSX 3.2.0 or 3.2.1 are in use
NSX is installed using a security only deployment
A storage vMotion is performed
Environment
VMware NSX-T Data Center
Resolution
This is a known issue in NSX and is resolved in NSX-T 3.2.2. See Issue 3004489 inĀ
VMware NSX-T Data Center 3.2.2 Release Notes.
Workaround:
Perform a standard vMotion after the storage vMotion to have the rules re-applied to the virtual machine.
VMware NSX-T Data Center 3.2.2 Release Notes.
Workaround:
Perform a standard vMotion after the storage vMotion to have the rules re-applied to the virtual machine.
Additional Information
Impact/Risks:
Loss of distributed firewall rules may cause VM to lose network connectivity or open the VM to security vulnerabilities.
Loss of distributed firewall rules may cause VM to lose network connectivity or open the VM to security vulnerabilities.
Feedback
Yes
No
Powered by
