HCX - DNS CNAME changed for HCX Service "connect.hcx.vmware.com"
searchcancel
HCX - DNS CNAME changed for HCX Service "connect.hcx.vmware.com"
book
Article ID: 369776
calendar_today
Updated On: 12-16-2024
Products
VMware NSX
Issue/Introduction
Potential loss of connectivity to "connect.hcx.vmware.com", This is due to DNS not recognizing "cloudflare.net" as a valid endpoint for individual customers' deployments.
Environment
The existing HCX Manager system which has lost the HTTPS connection to HCX service will be serving a grace period of 14 days starting from 10th June, after which HCX services/workflow will be impacted, until the connection is restored. During grace period of 14 days, HCX will continue to be functional for all migration/network extension and deployment related activities. After expiration of grace period:
The existing/ongoing migrations will be continued to be progress until completed.
The existing network extensions will be continued to be operational at datapath level.
Any new deployment/migration or network extension won’t be serviced.
New HCX Manager systems activation will fail if the DNS resolution fails against HCX service.
Cause
Broadcom has decided to move HCX service (connect.hcx.vmware.com) from Akamai CDN to Cloudflare effective 10th June 2024. As part of the change, the "connect.hcx.vmware.com" server's CNAME has been pointed to "connect.hcx.vmware.com.cdn.cloudflare.net" but the server URL ("connect.hcx.vmware.com") hasn’t been changed.
Resolution
The DNS server is required to whitelist the CNAME: "connect.hcx.vmware.com.cdn.cloudflare.net", wherever its applicable.