VMware Networking Community
abhisheksha
Enthusiast
Enthusiast
‎12-29-2017 07:36 AM
Jump to solution

HiWhy can't I ping to the NSX Edge Gateway?

Hi,

I have a fairly simple setup. I have a Logical Switch setup. A Windows VM is connected to this Logical Switch. A NSX Edge is created with an “Internal” interface connected to the same VNI. This interface has the default gateway IP. The firewall is disabled on the Edge. The Windows VM is on the same subnet as the Default Gateway. I’m not able to ping the Default gw. From the NSX Edge, I’m not able to ping the Windows VM either. Can you please tell me what am I doing wrong here?

Thank you Smiley Happy

Tags (1)
1 Solution

Accepted Solutions
cnrz
Expert
Expert
‎12-30-2017 01:54 AM
Jump to solution

If the VM and the Edge are on different ESX hosts, then the Edge internal interface and the VM nic communicates through VTEP ports, and the VTEP vlan should be configured on the Physical switch port connected to the Uplink interface  as 802.1q trunk port with that vlan allowed. If it works with Vlan 0 which means untagged, this may be the reason,

View solution in original post

0 Kudos
6 Replies
abhisheksha
Enthusiast
Enthusiast
‎12-29-2017 01:45 PM
Jump to solution

Okay, after breaking down my entire NSX setup, and creating it newly, this time the only difference being that VXLAN transport VLAN was set to 0. Previously, I had defined this to VLAN100. Why would this cause a VM and ESG connected to the same VNI, unable to communicate?! Since their respective NICs are on the same port group, and on the port group, it is still VLAN 100 that is defined, why would the communication not take place?

Any advise? Thank you!

0 Kudos
cnrz
Expert
Expert
‎12-30-2017 01:54 AM
Jump to solution

If the VM and the Edge are on different ESX hosts, then the Edge internal interface and the VM nic communicates through VTEP ports, and the VTEP vlan should be configured on the Physical switch port connected to the Uplink interface  as 802.1q trunk port with that vlan allowed. If it works with Vlan 0 which means untagged, this may be the reason,

0 Kudos
VCDX159
VMware Employee
VMware Employee
‎01-04-2018 07:32 AM
Jump to solution

Is your lab setup a "Nested" setup? If so, VLAN tagging is problematic with nested vSphere hosts. Use of a native VLAN will operate just fine. I am uncertain if there is a documented way around this issue since it has been around for some time.

Paul

abhisheksha
Enthusiast
Enthusiast
‎01-05-2018 02:52 AM
Jump to solution

Yeah, it is a "nested" setup. Smiley Happy On the top level vDS, I wasn't specifying the tagging for the transport VLAN. But, on the internal lab vDS, I was tagging with the transport VLAN.

0 Kudos
sachdr1
Contributor
Contributor
‎08-09-2019 05:58 AM
Jump to solution

Hi,

I have below setup of windows vms

192.168.1.2 win1

192.168.1.3 win2

192.168.1.4 win4

192.168.1.1 NSX Edge gateway

All the above machines are in same host. Able to ping NSX gateway from all the windows machines but windows machines cannot ping each other. what could be the issue?

0 Kudos
mauricioamorim
VMware Employee
VMware Employee
‎08-15-2019 02:20 PM
Jump to solution

Windows firewall

0 Kudos