Unable to query to visualize all the vSAN traffic grouping by destination host and total traffic due to absence of firewall rule for 2055 port
search cancel

Unable to query to visualize all the vSAN traffic grouping by destination host and total traffic due to absence of firewall rule for 2055 port

book

Article ID: 418325

calendar_today

Updated On:

Products

VCF Operations for Networks

Issue/Introduction

The query, "max(traffic rate) of flows where port = 2233 group by destination host order by sum(Total Traffic)", returns no information, even though a vSAN cluster exists.

 

The information should be provided with a working example, as shown below.

 

Environment

VCF Operations for Networks

Cause

The ESXi host is missing a firewall rule for port 2055, which is used by the NetFlow protocol.

Resolution

Try re-enabling "Enable NetFlow (IPFIX) on this vCenter," and then check if the firewall rule was created using the following command on the ESXi host.

# esxcli network firewall ruleset rule list

...

dynamicruleset                 Outbound   UDP       Dst              2055      2055

 

Powered by Wolken Software