IPsec VPN Configuration issue with Mixed IPv4/IPv6 Subnet
search cancel

IPsec VPN Configuration issue with Mixed IPv4/IPv6 Subnet

book

Article ID: 410985

calendar_today

Updated On:

Products

VMware NSX

Issue/Introduction

  • A policy-based IPsec VPN is being established between the NSX Tier-1 Gateway and an external VPN Gateway using IPv6 for both local and remote subnets.
  • However, upon introducing IPv4 addresses into the local and remote subnet configurations, the VPN fails to negotiate for the IPv6 subnets or vice versa, and returns a "No Proposal Chosen" error.

Environment

VMware NSX

Resolution

As of now, either IPV4 or IPV6 is supported, the dual stack feature is not supported. 

https://sales-resources.broadcom.com/documents/d/vcf/ipv6-compatibility-matrix-for-nsx-4-1-2-pdf

Powered by Wolken Software