You are unable to add a new Azure VMware Solution (AVS) vCenter as a data source in VCF Operations for Networks.

Network connectivity validation utilizing ping and telnet from the Collector appliance to the AVS vCenter IP address results in timeouts, indicating total network isolation.

NOTE:  VCF Operations for Networks was formerly named Aria Operations for Networks (AON), and prior to that was named vRealize Network Insight (vRNI).

VCF Operations for Networks 6.14

Azure VMware Solution (AVS)

There can be multiple causes for this, but from a networking standpoint, these are two of the most common causes:

1. Missing Layer 3 IP routing between the VCF Operations for Networks Collector and the AVS vCenter
   
   
2. Intervening firewalls are silently dropping ICMP and TCP 443 traffic between the VCF Operations for Networks Collector appliance and the AVS management network.

1. Establish standard IP routing, such as an Azure ExpressRoute or Site-to-Site VPN, between the network hosting the VCF Operations for Networks Collector and the AVS management subnet.
   
   
2. Modify Azure Network Security Groups (NSGs) to explicitly allow inbound TCP Port 443 and ICMP traffic from the Collector's IP address.
   
   
3. Update any intervening on-premises edge firewalls or routing instances to permit this bidirectional traffic.
   
   
4. Configure the AVS management gateway firewall to explicitly allow inbound traffic from the Collector's IP address to the AVS vCenter on TCP Port 443.
   
   
5. Log in to the Collector CLI and re-run ping <REDACTED_IPS> and telnet <REDACTED_IPS> 443 to the vCenter IP to verify that reachability has been established.
   
   
6. Once the telnet command connects successfully, retry adding the AVS vCenter data source in the User Interface.

For further reference, see Tech Docs Tech Docs - Supported Azure VMware Solution