Sorry, I put the wrong KB article on my first reply, but have changed to point to the correct VMware KB article that shows how to check bi-directional traffic, see: ESXi/ESX host disconnects from vCenter Server 60 seconds after connecting (1029919) | VMware KB
To verify if bi-directional traffic is allowed:
- Download Wireshark from http://www.wireshark.org/ and install it on the vCenter Server system.
- On ESXi, enable Tech Support Mode. For more information on enabling Tech Support Mode, see:
- Download the Python script attached to this article (
udp_client.py) to the ESXi/ESX system in question. - Edit the
udp_client.py script on the ESXi/ESX host using a text editor. Modify the line, "host = '192.168.1.1'" and replace 192.168.1.1 with the IP address of the vCenter Server system. - Start Wireshark on the vCenter Server system.
- In the Filter field, enter
ip.src==IP_of_host and udp.port==902. Replace IP_of_host with the IP address of the ESXi/ESX host in question. - Click Apply.
- From the Capture menu, select Interfaces and click Start next to the NIC used for vCenter Server IP traffic.
- From the ESXi/ESX host, run this command:
python udp_client.py
The total number of packets sent, the port, and the destination address are displayed.
- On the vCenter Server system, watch the Wireshark screen for any packets showing up that match the filter applied.
- If no packets are received, this indicates that something is blocking UDP traffic over port 902 from the ESXi/ESX host to the vCenter Server system. Inspect the physical networking environment and any software-based firewall on the vCenter Server system.
Ensure that these ports are open in the firewall between vCenter Server and the ESXi/ESX hosts:
---
Richardson Porto
Senior Infrastructure Specialist
LinkedIn: http://linkedin.com/in/richardsonporto
