The following two NSX Logical Router properties are not being updated when the changes were made in NSX Manager.

• Tier1 Gateway Firewall is set to OFF.
• HA Mode is changed from Active/Standby to Distributed Only mode.

Aria Operations 8.18

NSX 4.2

There are two causes:

1. NSX is on Manager API (Deprecated as of NSX 3.2 release)
   1. "Firewall Enable" does not get updated on the deprecated Manager API.
2. "Distribute Only" Mode is not being sent from NSX Manager.

• For the NSX Manager API issue, please perform the following steps to update NSX Manager to switch to Policy API.  
  • Login to NSX Manager UI
  • Go to System > General Settings > User Interface
    • Set "Toggle Visibility" to "Visible to All Users"
    • Set "Default Mode" to "Policy"
  • Go to System > Manager Objects Promotion
    • Click "Start Objects Promotion" to promote all objects that are still part of the Manager Objects.

Once the promotion of objects are completed, go back to Aria Operations, perform a data collecting restart on all NSX adapters. This update to Policy API will fix the "Firewall Enable" properties update.  After a few collection cycles, the "Firewall Enable" properties will update to False.

• As for the "HA Mode" properties, when the HA Mode is set to "Distributed Only" in NSX Manager, the current Aria Operations 8.18 release will not show the update on the HA Mode properties. The fix will be release in VCF 9.0.

Policy API call to NSX to retrieve the details for the Logical Router (In VCF 9.0, it will be consistently renamed to Gateway).

curl -k -u admin:"password" https://nsx-mgmt-FQDN/policy/api/v1/infra/tier-1s

Sample Result: