Problem A customer tried to create an Org VDC network which connected to an edge Gateway. The following error message appeared: All Interfaces of the edge gateway are in use Resolution: It appears the customer had hit the limit (10) of maximum number of interfaces allowed on the Edge as described in this KB2042799 Read More…
Category: NSX Edge
vCloud Director 8.20 – API to Grant Privileges to Advanced Gateway
Problem: After upgrading to Advanced Gateway Edge in VCD 8.20 the user is unable to access the new tenant portal due to a permissions issue Example of error message: You need some or all of the following rights [ORG_VDC_GATEWAY_CONFIGURE_SSH, ORG_VDC_GATEWAY_VIEW_SSH] to perform operations [GATEWAY_VIEW_SSH] for (com.vmware.vcloud.entity.gateway:c2c63647-82e7-4a40-8167-xxxxxxxxxx) Solution: To fix the issue a vCloud Director administrator will Read More…
Failed to Delete Interface of Edge Gateway
Problem: In vCloud Director 8.20 I was trying to remove an org network when the following error appeared : Cannot delete organization VDC network Failed to delete interace of edge gateway Resolution Re-deploy the Edge gateway then remove the org newtork once again.
SSL VPN-Plus Client Fails to Connect
After upgrading from vShield Edge 5.5.4 -> NSX Edge 6.2.4 -> then converting to Advanced Gateway in a vCloud Director (8.20) environment all of my SSL VPN connections failed to establish. The following appeared: "Error: Connection to gateway failed. Please contact your administrator for SSL VPN-Plus gateway settings." Looking at the version it appeared I Read More…
Change IP Address of vShield Manager
I was in the process of upgrading vShield Manager 5.5.4 to 5.5.4.3. In this instance I was deploying a new OVA and then restoring the configuration. To initially give the vShield Manager a static IP address you need to log into the cli. Via the VMware Console of the VM: 1) Enter the credentials to Read More…
Upgrade vShield Manager to NSX Manager in vCloud Director Enviroment
Components VCNS (source) 5.5.4 NSX Manager (target) 6.2.7 vCenter Appliance 6.0.0.U2 ESXi 6.0.0. U2 vCloud Director 8.0.2 Notes: As VCDNI is currently installed rather than VXLAN then nothing will change and the NSX controllers do not need to be installed at this stage. This is because VCDNI is managed by vCloud Director. At the time of Read More…
VCNS 5.5 – Upgrade Failed. Root Fileystem Full
When trying to upgrade VCNS 5.5.3 to 5.5.4 I was presented with this error: Message: Could not untar /common/em/downloads/image/image-vsm-vsm-5.5.4-2504419.img.dist This suggested to me there was a partition full somwhere on the vShield Manager VM To check this: Open the console of the VSM VM. Default username/passwords are: Username: admin Passowrd: default Enable: default #' show Read More…
Create SSL VPN-Plus Users in vShield Manager for vCloud Director Instance
As of vCloud Director 5.5 organisational users are still unable to create SSL VPN client connections. Instead this has to be done via vShield Manager by an Administrator. In this example the organisational network in the vDC is 192.168.5.0/24. I will give a static pool of 192.168.4.1 – 25 to the remote VPN users. The first Read More…
Connect to vCloud Director Instance using SSL VPN
This post follows on from how to create SSL VPN users for a vCloud Director deployment: http://www.jordansphere.co.uk/create-ssl-vpn…ector-instance/ To connect to your vShield Edge using an SSL VPN client you'll need to firstly login to the portal via https://{external-ip-of-edge-gateway}:8443 When logged in select the Full Access tab then click Default (which was created earlier) This brings up a download page. Read More…
Create a Site-to-Site VPN between vShield Edge and Draytek
Components: vCloud Director 5.1.1/ vShield Edge 5.1.1 Draytek 2820n (FW 3.3.7.5) Create VPN from vCloud to Draytek Firstly we need to create the VPN in vCloud Director. Login to your virtual data centre then go to Administration -> Edge Gateways -> (right click vshield edge) -> Edge Gateway Services -> VPN. Tick the Enable VPN then click Add. We will also need to ensure that Read More…
You must be logged in to post a comment.