VMware Cloud Community
grepolis
Contributor
Contributor
‎03-15-2013 02:20 PM

vShield Edge Packets

hi,

i have an issue that is driving me insane, i have configured a VSE in vCloud Director for an organisation VDC, the setup is as follows

physical server is on - 192.168.1.20

OUT INF - 192.168.1.254

IN INF - 172.30.20.254

VM is on  - 172.30.20.20 (External Routed Network)

I have a VM that is on the 172.30.20.0/24 subnet and when i ping the server on 192.168.1.20 from the VM the traffic is passed through the VSE and i receive traffic back from the server, which is what i expect.

Bear in mind that i have allowed all ports open on the firewall, so allow everything.

Right, when i ping from the physical server to the VM, i no longer get a successful ping, i can ping the outside interface (192.168.1.254) but i cannot ping the inside interface (172.30.20.254) this is what i don't understand and both interfaces are directley connected also shown in the route table. the traffic works from VM to Physical server but not the other way round.

is there somehow i can see what packets are been dropped on the VSE without pushing it to a syslog server or any debugs i can run because this really doesnt make any sense.

i have double checked all firewalls including the OS firewalls and its allow all traffic, so i know its not a firewall rule

any ideas would be great

0 Kudos
1 Reply
sflanders
Commander
Commander
‎03-24-2013 07:49 PM

Does 192.168.1.20 have a route to the 172.30.20.0/24 network? What is the default gateway of 192.168.1.20? If it is not 192.168.1.254 then that might be your issue. You can run tcpdump from vShield, please see: http://www.vmware.com/pdf/vshield_51_cli.pdf.

Hope this helps! === If you find this information useful, please award points for "correct" or "helpful". ===
0 Kudos