Can't reach segments on overlay transport zone

Petersaints · ‎04-24-2021

Hello all,

I have a small fully collapsed environment on NSX-T 3.0. All the transport zones use the same two pnics.

Everything was working fine, nothing changed on the environment, but a few days ago VMs on vlan transport zone stop reaching VMs on overlay segments. But VMs on overlay segments can reach VMs on vlan transport zone.

If i ran traceroute command from a VM on the vlan tz, the last hop is the ip address of the interface configured on the T0.

DFW and Gateway firewall,only have the default rules allow any, active.

I don't have any alarms on the environment and i also restart the edge nodes.

Any ideas?

Thanks.

Regards.

shank89 · ‎04-24-2021

Have you got any firewall rules configured ?

Shashank Mohan

VCIX-NV 2022 | VCP-DCV2019 | CCNP Specialist

https://lab2prod.com.au
LinkedIn https://www.linkedin.com/in/shankmohan/
Twitter @ShankMohan
Author of NSX-T Logical Routing: https://link.springer.com/book/10.1007/978-1-4842-7458-3

p0wertje · ‎04-24-2021

You could try doing a traceflow from the edge-plink port and see if anything gets dropped. Unfortunately you cannot do a trace from an ip outside nsx.

Cheers,
p0wertje | VCIX6-NV | JNCIS-ENT | vExpert
Please kudo helpful posts and mark the thread as solved if solved