NSX-T Edge crashes with memory corruption due to ALG (FTP) traffic.
search cancel

NSX-T Edge crashes with memory corruption due to ALG (FTP) traffic.

book

Article ID: 379239

calendar_today

Updated On:

Products

VMware vDefend Firewall VMware NSX VMware NSX-T Data Center

Issue/Introduction

  • NSX-T environment with thousands of ALG(FTP) traffic sessions/ connections passing via Edge.
  • Gateway firewall rule with ALG (FTP) service configured
  • Edge crashes with the core dump /var/log/core/core.dp-fw-purge#.gz

Sample: /var/log/core/core.dp-fw-purge##.##########.#####.#.##.gz

  • Below alarms could be seen for the affected NSX Edges

Environment

VMware NSX-T Data Center

VMware NSX 

Cause

In scenarios with multiple FTP connections, the logic in the code that cleans up old connections is faulty, leading to memory corruption/crash.

 

Resolution

This is fix on VMware NSX 4.2.1.2 and above versions.

VMware NSX 4.2.1.2 Release Notes 

 

Powered by Wolken Software