NSX-V – Identify firewall rule

This post was originally published on this site

Hello there,

 

We have enviroment with NSX-V 6.4.6 and having a drop traffic that we dont know why is dropping on a specific rule.

 

Log dfw:

 

2020-08-06T10:54:59.805Z 48800 INET match PASS domain-c8/1225 OUT 48 TCP 10.140.40.41/37308->10.140.40.42/22 S

2020-08-06T10:54:59.806Z 59736 INET match PASS domain-c8/1225 IN 48 TCP 10.140.40.41/37308->10.140.40.42/22 S

 

Rule id 1225:

Src: any

Dst: LS_management (10.80.80.0/22)

Service: any

 

VM A needs to stablish ssh connection to VM B and its drop by the rule above.

VM A: 10.140.40.41

VM B: 10.140.40.42

 

IP address of vms isnt belongs to LS_management. Is there any way to know why this kind of traffic its matching on that rule?

 

Thanks!!

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.