<?xml version="1.0" encoding="UTF-8"?>
<rss xmlns:content="http://purl.org/rss/1.0/modules/content/" xmlns:dc="http://purl.org/dc/elements/1.1/" xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#" xmlns:taxo="http://purl.org/rss/1.0/modules/taxonomy/" version="2.0">
  <channel>
    <title>topic ESXi 7 - VM can ping gateway on VLAN interface, but gw cannot ping device in ESXi Discussions</title>
    <link>https://communities.vmware.com/t5/ESXi-Discussions/ESXi-7-VM-can-ping-gateway-on-VLAN-interface-but-gw-cannot-ping/m-p/2974989#M288763</link>
    <description>&lt;P&gt;I have multiple VLANs in my homelab.&lt;/P&gt;&lt;P&gt;VLAN 1 (default)&lt;BR /&gt;VLAN 10 (guest) - portgroup: std-0-guest-10&lt;BR /&gt;VLAN 66 (IOT) - portgroup: std-0-iot-66&lt;BR /&gt;...&lt;/P&gt;&lt;P&gt;Gateway is a PfSense+ on a Netgate 3100 -- everything works if I use an external DNS for the network (via DHCP) if I use the internal DNS that I would like to use, nothing resolves.&lt;/P&gt;&lt;P&gt;I'm running an Ubuntu VM that runs DNS and I need it to have available on all VLANs.&amp;nbsp; The device has multiple vEth, on each network.&amp;nbsp; The Guest VLAN works, gateway can ping server, server can ping gateway, DNS works.&amp;nbsp; Device on IOT VLAN cannot get to DNS.&lt;/P&gt;&lt;P&gt;From server:&lt;/P&gt;&lt;PRE&gt;# ping -I ens224 192.168.66.1&lt;BR /&gt;PING 192.168.66.1 (192.168.66.1) from 192.168.66.80 ens224: 56(84) bytes of data.&lt;BR /&gt;64 bytes from 192.168.66.1: icmp_seq=1 ttl=64 time=0.947 ms&lt;BR /&gt;64 bytes from 192.168.66.1: icmp_seq=2 ttl=64 time=0.406 ms&lt;/PRE&gt;&lt;P&gt;From gateway:&lt;/P&gt;&lt;PRE&gt;PING 192.168.66.3 (192.168.66.3) from 192.168.66.1: 56 data bytes

--- 192.168.66.3 ping statistics ---
3 packets transmitted, 0 packets received, 100.0% packet loss&lt;/PRE&gt;&lt;PRE&gt;# ip a &lt;BR /&gt;1: lo: &amp;lt;LOOPBACK,UP,LOWER_UP&amp;gt; mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000&lt;BR /&gt;link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00&lt;BR /&gt;inet 127.0.0.1/8 scope host lo&lt;BR /&gt;valid_lft forever preferred_lft forever&lt;BR /&gt;2: ens160: &amp;lt;BROADCAST,MULTICAST,UP,LOWER_UP&amp;gt; mtu 1500 qdisc fq_codel state UP group default qlen 1000&lt;BR /&gt;link/ether 00:50:56:8f:7c:64 brd ff:ff:ff:ff:ff:ff&lt;BR /&gt;inet 192.168.1.3/24 brd 192.168.1.255 scope global ens160&lt;BR /&gt;valid_lft forever preferred_lft forever&lt;BR /&gt;3: ens192: &amp;lt;BROADCAST,MULTICAST,UP,LOWER_UP&amp;gt; mtu 1500 qdisc fq_codel state UP group default qlen 1000&lt;BR /&gt;link/ether 00:0c:29:60:87:79 brd ff:ff:ff:ff:ff:ff&lt;BR /&gt;inet 192.168.107.3/24 brd 192.168.107.255 scope global ens192&lt;BR /&gt;valid_lft forever preferred_lft forever&lt;BR /&gt;inet 192.168.107.130/24 brd 192.168.107.255 scope global secondary noprefixroute ens192&lt;BR /&gt;valid_lft forever preferred_lft forever&lt;BR /&gt;4: ens224: &amp;lt;BROADCAST,MULTICAST,UP,LOWER_UP&amp;gt; mtu 1500 qdisc fq_codel state UP group default qlen 1000&lt;BR /&gt;link/ether 00:50:56:bd:5b:45 brd ff:ff:ff:ff:ff:ff&lt;BR /&gt;inet 192.168.66.3/24 brd 192.168.66.255 scope global ens224&lt;BR /&gt;valid_lft forever preferred_lft forever&lt;BR /&gt;inet 192.168.66.80/24 brd 192.168.66.255 scope global secondary noprefixroute ens224&lt;BR /&gt;valid_lft forever preferred_lft forever&lt;BR /&gt;5: ens256: &amp;lt;BROADCAST,MULTICAST,UP,LOWER_UP&amp;gt; mtu 1500 qdisc fq_codel state UP group default qlen 1000&lt;BR /&gt;link/ether 00:50:56:bd:ca:34 brd ff:ff:ff:ff:ff:ff&lt;BR /&gt;inet 192.168.10.3/24 brd 192.168.10.255 scope global ens256&lt;BR /&gt;valid_lft forever preferred_lft forever&lt;BR /&gt;inet 192.168.10.10/24 brd 192.168.10.255 scope global secondary noprefixroute ens256&lt;BR /&gt;valid_lft forever preferred_lft forever&lt;BR /&gt;6: v10@ens256: &amp;lt;BROADCAST,MULTICAST,UP,LOWER_UP&amp;gt; mtu 1500 qdisc noqueue state UP group default qlen 1000&lt;BR /&gt;link/ether 00:50:56:bd:ca:34 brd ff:ff:ff:ff:ff:ff&lt;BR /&gt;inet 192.168.10.3/24 brd 192.168.10.255 scope global v10&lt;BR /&gt;valid_lft forever preferred_lft forever&lt;BR /&gt;7: v66@ens224: &amp;lt;BROADCAST,MULTICAST,UP,LOWER_UP&amp;gt; mtu 1500 qdisc noqueue state UP group default qlen 1000&lt;BR /&gt;link/ether 00:50:56:bd:5b:45 brd ff:ff:ff:ff:ff:ff&lt;BR /&gt;inet 192.168.66.3/24 brd 192.168.66.255 scope global v66&lt;BR /&gt;valid_lft forever preferred_lft forever&lt;BR /&gt;8: v107@ens192: &amp;lt;BROADCAST,MULTICAST,UP,LOWER_UP&amp;gt; mtu 1500 qdisc noqueue state UP group default qlen 1000&lt;BR /&gt;link/ether 00:0c:29:60:87:79 brd ff:ff:ff:ff:ff:ff&lt;BR /&gt;inet 192.168.107.3/24 brd 192.168.107.255 scope global v107&lt;BR /&gt;valid_lft forever preferred_lft forever&lt;BR /&gt;# netstat -nr&lt;BR /&gt;Kernel IP routing table&lt;BR /&gt;Destination Gateway Genmask Flags MSS Window irtt Iface&lt;BR /&gt;0.0.0.0 192.168.1.1 0.0.0.0 UG 0 0 0 ens160&lt;BR /&gt;0.0.0.0 192.168.107.1 0.0.0.0 UG 0 0 0 ens192&lt;BR /&gt;0.0.0.0 192.168.66.1 0.0.0.0 UG 0 0 0 ens224&lt;BR /&gt;0.0.0.0 192.168.10.1 0.0.0.0 UG 0 0 0 ens256&lt;BR /&gt;0.0.0.0 0.0.0.0 0.0.0.0 U 0 0 0 v107&lt;BR /&gt;192.168.1.0 0.0.0.0 255.255.255.0 U 0 0 0 ens160&lt;BR /&gt;192.168.10.0 0.0.0.0 255.255.255.0 U 0 0 0 ens256&lt;BR /&gt;192.168.10.0 0.0.0.0 255.255.255.0 U 0 0 0 v10&lt;BR /&gt;192.168.66.0 0.0.0.0 255.255.255.0 U 0 0 0 v66&lt;BR /&gt;192.168.66.0 0.0.0.0 255.255.255.0 U 0 0 0 ens224&lt;BR /&gt;192.168.107.0 0.0.0.0 255.255.255.0 U 0 0 0 v107&lt;BR /&gt;192.168.107.0 0.0.0.0 255.255.255.0 U 0 0 0 ens192&lt;/PRE&gt;&lt;P&gt;I used `vim-cmd vmsvc/device.getdevices 27` to see if I can see any differences attaching it just for reference.&lt;/P&gt;</description>
    <pubDate>Wed, 28 Jun 2023 22:46:23 GMT</pubDate>
    <dc:creator>amirzadeh</dc:creator>
    <dc:date>2023-06-28T22:46:23Z</dc:date>
    <item>
      <title>ESXi 7 - VM can ping gateway on VLAN interface, but gw cannot ping device</title>
      <link>https://communities.vmware.com/t5/ESXi-Discussions/ESXi-7-VM-can-ping-gateway-on-VLAN-interface-but-gw-cannot-ping/m-p/2974989#M288763</link>
      <description>&lt;P&gt;I have multiple VLANs in my homelab.&lt;/P&gt;&lt;P&gt;VLAN 1 (default)&lt;BR /&gt;VLAN 10 (guest) - portgroup: std-0-guest-10&lt;BR /&gt;VLAN 66 (IOT) - portgroup: std-0-iot-66&lt;BR /&gt;...&lt;/P&gt;&lt;P&gt;Gateway is a PfSense+ on a Netgate 3100 -- everything works if I use an external DNS for the network (via DHCP) if I use the internal DNS that I would like to use, nothing resolves.&lt;/P&gt;&lt;P&gt;I'm running an Ubuntu VM that runs DNS and I need it to have available on all VLANs.&amp;nbsp; The device has multiple vEth, on each network.&amp;nbsp; The Guest VLAN works, gateway can ping server, server can ping gateway, DNS works.&amp;nbsp; Device on IOT VLAN cannot get to DNS.&lt;/P&gt;&lt;P&gt;From server:&lt;/P&gt;&lt;PRE&gt;# ping -I ens224 192.168.66.1&lt;BR /&gt;PING 192.168.66.1 (192.168.66.1) from 192.168.66.80 ens224: 56(84) bytes of data.&lt;BR /&gt;64 bytes from 192.168.66.1: icmp_seq=1 ttl=64 time=0.947 ms&lt;BR /&gt;64 bytes from 192.168.66.1: icmp_seq=2 ttl=64 time=0.406 ms&lt;/PRE&gt;&lt;P&gt;From gateway:&lt;/P&gt;&lt;PRE&gt;PING 192.168.66.3 (192.168.66.3) from 192.168.66.1: 56 data bytes

--- 192.168.66.3 ping statistics ---
3 packets transmitted, 0 packets received, 100.0% packet loss&lt;/PRE&gt;&lt;PRE&gt;# ip a &lt;BR /&gt;1: lo: &amp;lt;LOOPBACK,UP,LOWER_UP&amp;gt; mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000&lt;BR /&gt;link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00&lt;BR /&gt;inet 127.0.0.1/8 scope host lo&lt;BR /&gt;valid_lft forever preferred_lft forever&lt;BR /&gt;2: ens160: &amp;lt;BROADCAST,MULTICAST,UP,LOWER_UP&amp;gt; mtu 1500 qdisc fq_codel state UP group default qlen 1000&lt;BR /&gt;link/ether 00:50:56:8f:7c:64 brd ff:ff:ff:ff:ff:ff&lt;BR /&gt;inet 192.168.1.3/24 brd 192.168.1.255 scope global ens160&lt;BR /&gt;valid_lft forever preferred_lft forever&lt;BR /&gt;3: ens192: &amp;lt;BROADCAST,MULTICAST,UP,LOWER_UP&amp;gt; mtu 1500 qdisc fq_codel state UP group default qlen 1000&lt;BR /&gt;link/ether 00:0c:29:60:87:79 brd ff:ff:ff:ff:ff:ff&lt;BR /&gt;inet 192.168.107.3/24 brd 192.168.107.255 scope global ens192&lt;BR /&gt;valid_lft forever preferred_lft forever&lt;BR /&gt;inet 192.168.107.130/24 brd 192.168.107.255 scope global secondary noprefixroute ens192&lt;BR /&gt;valid_lft forever preferred_lft forever&lt;BR /&gt;4: ens224: &amp;lt;BROADCAST,MULTICAST,UP,LOWER_UP&amp;gt; mtu 1500 qdisc fq_codel state UP group default qlen 1000&lt;BR /&gt;link/ether 00:50:56:bd:5b:45 brd ff:ff:ff:ff:ff:ff&lt;BR /&gt;inet 192.168.66.3/24 brd 192.168.66.255 scope global ens224&lt;BR /&gt;valid_lft forever preferred_lft forever&lt;BR /&gt;inet 192.168.66.80/24 brd 192.168.66.255 scope global secondary noprefixroute ens224&lt;BR /&gt;valid_lft forever preferred_lft forever&lt;BR /&gt;5: ens256: &amp;lt;BROADCAST,MULTICAST,UP,LOWER_UP&amp;gt; mtu 1500 qdisc fq_codel state UP group default qlen 1000&lt;BR /&gt;link/ether 00:50:56:bd:ca:34 brd ff:ff:ff:ff:ff:ff&lt;BR /&gt;inet 192.168.10.3/24 brd 192.168.10.255 scope global ens256&lt;BR /&gt;valid_lft forever preferred_lft forever&lt;BR /&gt;inet 192.168.10.10/24 brd 192.168.10.255 scope global secondary noprefixroute ens256&lt;BR /&gt;valid_lft forever preferred_lft forever&lt;BR /&gt;6: v10@ens256: &amp;lt;BROADCAST,MULTICAST,UP,LOWER_UP&amp;gt; mtu 1500 qdisc noqueue state UP group default qlen 1000&lt;BR /&gt;link/ether 00:50:56:bd:ca:34 brd ff:ff:ff:ff:ff:ff&lt;BR /&gt;inet 192.168.10.3/24 brd 192.168.10.255 scope global v10&lt;BR /&gt;valid_lft forever preferred_lft forever&lt;BR /&gt;7: v66@ens224: &amp;lt;BROADCAST,MULTICAST,UP,LOWER_UP&amp;gt; mtu 1500 qdisc noqueue state UP group default qlen 1000&lt;BR /&gt;link/ether 00:50:56:bd:5b:45 brd ff:ff:ff:ff:ff:ff&lt;BR /&gt;inet 192.168.66.3/24 brd 192.168.66.255 scope global v66&lt;BR /&gt;valid_lft forever preferred_lft forever&lt;BR /&gt;8: v107@ens192: &amp;lt;BROADCAST,MULTICAST,UP,LOWER_UP&amp;gt; mtu 1500 qdisc noqueue state UP group default qlen 1000&lt;BR /&gt;link/ether 00:0c:29:60:87:79 brd ff:ff:ff:ff:ff:ff&lt;BR /&gt;inet 192.168.107.3/24 brd 192.168.107.255 scope global v107&lt;BR /&gt;valid_lft forever preferred_lft forever&lt;BR /&gt;# netstat -nr&lt;BR /&gt;Kernel IP routing table&lt;BR /&gt;Destination Gateway Genmask Flags MSS Window irtt Iface&lt;BR /&gt;0.0.0.0 192.168.1.1 0.0.0.0 UG 0 0 0 ens160&lt;BR /&gt;0.0.0.0 192.168.107.1 0.0.0.0 UG 0 0 0 ens192&lt;BR /&gt;0.0.0.0 192.168.66.1 0.0.0.0 UG 0 0 0 ens224&lt;BR /&gt;0.0.0.0 192.168.10.1 0.0.0.0 UG 0 0 0 ens256&lt;BR /&gt;0.0.0.0 0.0.0.0 0.0.0.0 U 0 0 0 v107&lt;BR /&gt;192.168.1.0 0.0.0.0 255.255.255.0 U 0 0 0 ens160&lt;BR /&gt;192.168.10.0 0.0.0.0 255.255.255.0 U 0 0 0 ens256&lt;BR /&gt;192.168.10.0 0.0.0.0 255.255.255.0 U 0 0 0 v10&lt;BR /&gt;192.168.66.0 0.0.0.0 255.255.255.0 U 0 0 0 v66&lt;BR /&gt;192.168.66.0 0.0.0.0 255.255.255.0 U 0 0 0 ens224&lt;BR /&gt;192.168.107.0 0.0.0.0 255.255.255.0 U 0 0 0 v107&lt;BR /&gt;192.168.107.0 0.0.0.0 255.255.255.0 U 0 0 0 ens192&lt;/PRE&gt;&lt;P&gt;I used `vim-cmd vmsvc/device.getdevices 27` to see if I can see any differences attaching it just for reference.&lt;/P&gt;</description>
      <pubDate>Wed, 28 Jun 2023 22:46:23 GMT</pubDate>
      <guid>https://communities.vmware.com/t5/ESXi-Discussions/ESXi-7-VM-can-ping-gateway-on-VLAN-interface-but-gw-cannot-ping/m-p/2974989#M288763</guid>
      <dc:creator>amirzadeh</dc:creator>
      <dc:date>2023-06-28T22:46:23Z</dc:date>
    </item>
    <item>
      <title>Re: ESXi 7 - VM can ping gateway on VLAN interface, but gw cannot ping device</title>
      <link>https://communities.vmware.com/t5/ESXi-Discussions/ESXi-7-VM-can-ping-gateway-on-VLAN-interface-but-gw-cannot-ping/m-p/2975004#M288764</link>
      <description>&lt;P&gt;Hi,&amp;nbsp;&lt;/P&gt;&lt;P&gt;any specific reason for the Ubuntu DNS-Server to need multiple NICs on each VLAN?&lt;/P&gt;&lt;P&gt;Having multiple default gateways in your VMs routing table most likely leads to these problems. To check, you could disable all other NICs except the IoT VLAN one and see if the IoT-Machine can ping the DNS.&amp;nbsp;&lt;/P&gt;&lt;P&gt;If you're using a firewall I would go with a single-NIC DNS-Server, establish Routing and proper Rules and then use the PFSense DNS Forwarder described here:&amp;nbsp;&lt;A href="https://docs.netgate.com/pfsense/en/latest/services/dns/forwarder.html" target="_blank" rel="noopener"&gt;Services — DNS Forwarder | pfSense Documentation (netgate.com)&lt;/A&gt;&lt;/P&gt;&lt;P&gt;&amp;nbsp;&lt;/P&gt;</description>
      <pubDate>Thu, 29 Jun 2023 06:27:26 GMT</pubDate>
      <guid>https://communities.vmware.com/t5/ESXi-Discussions/ESXi-7-VM-can-ping-gateway-on-VLAN-interface-but-gw-cannot-ping/m-p/2975004#M288764</guid>
      <dc:creator>lukasrueckerl</dc:creator>
      <dc:date>2023-06-29T06:27:26Z</dc:date>
    </item>
    <item>
      <title>Re: ESXi 7 - VM can ping gateway on VLAN interface, but gw cannot ping device</title>
      <link>https://communities.vmware.com/t5/ESXi-Discussions/ESXi-7-VM-can-ping-gateway-on-VLAN-interface-but-gw-cannot-ping/m-p/2975028#M288767</link>
      <description>&lt;P&gt;I actually tried the forwarder before and the DHCP process would not complete for some reason - I moved away from it and setup the extra NICs.&amp;nbsp; That started to work for some interfaces but obviously I ran into a problem after a few of them.&amp;nbsp; I just removed all of the NICs and changed the DNS in DHCP to the local interface address and it started to work so I now I'm not sure what the original problem was.&amp;nbsp; Thank you for the recommendation to try it again, so much simpler.&lt;/P&gt;</description>
      <pubDate>Thu, 29 Jun 2023 08:52:07 GMT</pubDate>
      <guid>https://communities.vmware.com/t5/ESXi-Discussions/ESXi-7-VM-can-ping-gateway-on-VLAN-interface-but-gw-cannot-ping/m-p/2975028#M288767</guid>
      <dc:creator>amirzadeh</dc:creator>
      <dc:date>2023-06-29T08:52:07Z</dc:date>
    </item>
  </channel>
</rss>

