Segment cannot be created or edited because the subnet overlaps with an LB VIP
search cancel

Segment cannot be created or edited because the subnet overlaps with an LB VIP


Article ID: 325100


Updated On:


VMware NSX Networking


  • Creating or Editing a Segment fails with the error
    "IP address A.B.C.D/X overlaps with LbVirtualServer <> that has IP address A.B.C.D."
  • The segment and the LB Virtual Server are configured on separate Tier 1 Gateways
  • The LB VIP is an IP in the range of the Segment IP subnet
    • Note: if the Segment and Virtual Server are configured on the same Tier 1 Gateway, this error is expected.
  • On the NSX manager "get log-file policy.log" may have a log entry like this example
2020-01-28T08:06:26.621Z  INFO http-nio- NsxBaseRestController - - [nsx@6876 comp="nsx-manager" level="INFO" subcomp="policy"] Error in API /policy/api/v1/infra/segments/LS1 caused by exception  {"moduleName":"Policy","errorCode":500105,"errorMessage":"Address overlaps with LbVirtualServer path=[/infra/lb-virtual-servers/HTTP_LB] that has IP address"}


VMware NSX-T Data Center 2.x
VMware NSX-T Data Center


When a Segment is created or edited, a validation check is performed to ensure the Segment subnet does not overlap with LB Virtual Server IP address.
This check is designed to be per Tier 1 Gateway however this issue is caused when the validation checks IPs in use on all Tier 1 Gateways.


This issue is resolved in  VMware NSX-T Data Center 3.0, available at VMware Downloads.


To bypass this validation check, delete the Virtual Server, then create/edit the Segment and recreate the Virtual Server