/Net/ReversePathFwdCheckPromisc setting does not work after upgrading VDS or uninstall NSX modules on ESXi.
search cancel

/Net/ReversePathFwdCheckPromisc setting does not work after upgrading VDS or uninstall NSX modules on ESXi.

book

Article ID: 379904

calendar_today

Updated On:

Products

VMware vSphere ESXi 7.0 VMware vSphere ESXi 8.0

Issue/Introduction

Set promiscuous mode on the distributed portgroup and configure follow setting to enable reverse path filter on ESXi hosts.

  # esxcli system settings advanced set -o /Net/ReversePathFwdCheckPromisc -i 1

 

But, this /Net/ReversePathFwdCheckPromisc setting could not work on host after perform one of the following operations.
1) Upgrade the VDS from a version greater than 7.0 to another version
2) Uninstall NSX modules on ESXi hypervisor


The user experiences an issue when migrating/powering on an edge VM on an affected ESXI host with edge bridging.

Notes:
More details about edge bridging with promiscuous mode and forged transmits, please see "Option 2b" in this document.
https://docs.vmware.com/en/VMware-NSX/4.2/administration/GUID-0E28AC86-9A87-47D4-BE25-5E425DAF7585.html

Environment

VMware vSphere ESXi 7.0.x
VMware vSphere ESXi 8.0.x

Resolution

The issue is being fixed in 7.0.3 P10.

Additional Information

惻Workaround
/Net/ReversePathFwdCheckPromisc setting will work by reboot ESXi host.

So please plan to reboot the ESXi host after a VDS upgrade or uninstall NSX modules.