Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 5 replies
  • Subscribers 27 subscribers
  • Views 5104 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

VMWare Datastore uploads across a Site to Site VPN not working.

John Loy

I am seeing a very strange issue.  We have an off-site Data Center, COLO, that is connected VIA a IPSEC Site-to Site-tunnel with our Main Site, Sophos on both ends.  Recently we needed to upload some ISOs to the Datastore.  When I try to upload any file from the Main Site to the Datastoreat the COLO it fails in VMWare.  The file looks like it is uploading but when it hits 30-34% it fails out.  I spent days thinking it was a VMWare issue and the Certs.  I corrected the Cert issue but still nothing.  Finally I tested a File Upload from a VM that is at the COLO and it works perfectly!  I then tested a file upload from a RED that is connected to the Main Site and it worked through that same Site-to-Site IPSEC Tunnel, but nothing works from the Main Site to the COLO through the IPSEC Tunnel.  The log viewer show TCP RST errors on the VPN Rule anytime I start an upload.  We have no restrictions or scanning on the VPN Tunnel rules.  We have workarounds but there is something wrong with the Sophos code.



This thread was automatically locked due to age.
  • 0

    Hey  

    For further clarity, how large are these files you are trying to upload? What version are both Firewalls on? You may also want to attempt the command listed at the bottom of this KB.

    Regards,

  • 0

    Hello John,

    Copying errors on a vmware storage are very often caused by certificate issues, it is true.

    However, to do the following simple test:

    - activate a SSH server on some ESXi hypervisor which is connected to a storage where you detected copying errors

    - connect with SCP client (or SSH client) to an ESXi hypervisor to  the following directory path /vmfs/volumes/storage/vmware_appliances_folder

    - try copying identical ISO files as you did in your previous tests

    Now I think you'll know where the problem is. What's on vmware vSphere beautiful is that it's still Linux. 

    Regards

    alda

  • 0 in reply to alda

    I can copy files via SCP from the Main Site to the Remote Site.  While that solves my immediate issue, I would rather not keep SSH enabled or have admins with that level of file access to the Hosts.  I can not be the only one with this setup.  If it is working for someone else then please let me know.

  • 0 in reply to FloSupport

    These ate 4Gb files and I have a 100MB/100MB connection between the sites.  I would love to post a video.  But I will describe it as best as I can.  When I do to upload to the datastore the web client thinks that it is working.  It shows the percentage flying, to fast for the file it is uploading, but then fails around 33%.  It is like the client is getting ACKs that all is well, like something is caching the data and then it gets a response that the connection is reset. 

  • 0 in reply to John Loy

    Hi John, did you ever resolve this?