We upgraded to Horizon View 7.3.1 and we have a few instant clone pools that have the network port group not the same as the parent VM. Previously in 7.2 and 7.1 this was fine, but since going to 7.3.1 the network card on the VMs would be blocked by the port group security unless we switch the security on the port groups to:
MAC address changes: accept
Forged Transmits: accept
Obviously this isn't ideal, so does anyone have any ideas why this would have happened or any suggestions on a workaround other than changing the security settings on the port groups?
Possibly this KB?
https://kb.vmware.com/kb/2150925
We are testing out View 7.3.1, and part of the test was upgrading our QA vCenter to 6.5. Unfortunately our QA hosts do not support ESXi 6.5 and we encountered instant clone provisioning errors with the mis-matched version environment. Right now we are only running linked clones due to the incompatibility.
I didn't test the changes you reference to the port group, but may give that a try just to see what happens and try to get a small instant clone pool going.
No it isn't that issue. All of our port groups are distributed switch static binding port groups that are not ephemeral.
We were using static binding too, as ephemeral is not supported with instant clones. I sent logs over and support showed it was that bug (KB I posted) within a few hours.
I just tried changing my port group with what you listed in the original post and still have the issue, cloned desktops fail with the resource in use error.
Seems like we are dealing with different issues. Good luck getting yours resolved.
I am seeing the same thing. Upgraded to 7.3.1 from 7.0.3 to get the multi VLAN functionality and have the same behavior.
Have you logged a support ticket as of yet?
I do have a support ticket in and the engineer watched the issue occur and has acknowledged that it is an issue. Have not heard back since though.
I will get this logged too.
Hi. Was this ever resolved? I have the same issue regarding the port blocking and it's affecting Instant Clones with VMXNET3 vmnics.
Changing PG security to accept MAC addresses and forged transmits fixes it but i'm concerned about the security risk this introduces.
Tested with the E1000 vmnic and it works perfectly to multiple VLAN's without having to change the PG security.
Cheers