Edge SWG VM deployed in Azure is not accessible over the network
search cancel

Edge SWG VM deployed in Azure is not accessible over the network

book

Article ID: 440002

calendar_today

Updated On:

Products

ISG Proxy ProxySG Software - SGOS

Issue/Introduction

Edge SWG VM deployed in Azure can't be accessed via SSH or Management Console.

VM is accessible via Azure serial console.

 

Environment

  • VM is deployed as per deployment guide 
  • VM can be managed via Azure serial console
  • Initial configuration - serial number and IP addresses are properly configured
  • Azure components like Network Security Groups, routing, firewall are configured properly to allow this traffic 
  • Assigned IP address is reachable via ping but VM is not accessible via SSH or Management Console (port 8082)

Cause

TCP-IP checksum offload not functioning correctly on certain versions of Hyper-V deployments.

This results in traffic being dropped.

Resolution

There are two options to fix the issue:

  • Upgrade to 7.4.13+ or 7.3.28+ where this issue is addressed from Edge SWG end

Or:

  • Disable TCP checksum on Edge SWG:

    #(config)tcp-ip transmit-checksum disable
Powered by Wolken Software