NSX Federation: NSX Local Manager Import Error on NSX Global Manager - "Unable to Import due to these unsupported features: VPN, Isolated Segments without connectivity, Unknown".
search cancel

NSX Federation: NSX Local Manager Import Error on NSX Global Manager - "Unable to Import due to these unsupported features: VPN, Isolated Segments without connectivity, Unknown".

book

Article ID: 416175

calendar_today

Updated On:

Products

VMware NSX

Issue/Introduction

Below error reported while importing LM on GM.

  • Unable to Import due to these unsupported features: VPN, Isolated Segments without connectivity, Unknown
  • LM is already configured with VPN service and T0/T1 gateways before adding it to GM.
  • Same error may report to other features as well which are unsupported.

Environment

VMWare NSX

Cause

This is a know issue on NSX Federation with a design limitation. Below features are not supported while importing LM into GM.

  • "Local Manager" configurations not supported for importing into "Global Manager", The following features are not supported with NSX Federation.
    • DHCP dynamic binding
    • Distributed IDS
    • Distributed security for vCenter VDS Port Group only ( Global Manager does not see the vCenter VDS port groups to assign them in security groups. However, Global Manager can use dynamic membership in groups based on vCenter VDS port groups tags added by Local Managers.)
    • Endpoint protection
    • Forwarding policies
    • Guest introspection
    • Identity firewall
    • IDS/IPS
    • L2 Bridge
    • Load balancer
    • Malware prevention
    • Metadata proxy
    • Multicast
    • Network detection and response
    • Network introspection
    • Routing protocols (OSPF)
    • Routing VPN and EVPN
    • Service insertion
    • T0 VRF
    • TLS inspection
    • URL filtering

Resolution

Workaround:

  • The following features are not supported with NSX Federation. Import of configurations into the Global Manager is blocked if you have any of these configurations in your Local Manager as per the below documentation. You must remove unsupported configurations to proceed with importing. After your supported Local Manager configurations are successfully imported into Global Manager, you can add the configurations for any of the unsupported features back into your Local Manager.

Additional Information

Other related KB's:

Powered by Wolken Software