Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 5 replies
  • Subscribers 27 subscribers
  • Views 5106 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

VMWare Datastore uploads across a Site to Site VPN not working.

John Loy

I am seeing a very strange issue.  We have an off-site Data Center, COLO, that is connected VIA a IPSEC Site-to Site-tunnel with our Main Site, Sophos on both ends.  Recently we needed to upload some ISOs to the Datastore.  When I try to upload any file from the Main Site to the Datastoreat the COLO it fails in VMWare.  The file looks like it is uploading but when it hits 30-34% it fails out.  I spent days thinking it was a VMWare issue and the Certs.  I corrected the Cert issue but still nothing.  Finally I tested a File Upload from a VM that is at the COLO and it works perfectly!  I then tested a file upload from a RED that is connected to the Main Site and it worked through that same Site-to-Site IPSEC Tunnel, but nothing works from the Main Site to the COLO through the IPSEC Tunnel.  The log viewer show TCP RST errors on the VPN Rule anytime I start an upload.  We have no restrictions or scanning on the VPN Tunnel rules.  We have workarounds but there is something wrong with the Sophos code.



This thread was automatically locked due to age.
Parents
  • 0

    Hello John,

    Copying errors on a vmware storage are very often caused by certificate issues, it is true.

    However, to do the following simple test:

    - activate a SSH server on some ESXi hypervisor which is connected to a storage where you detected copying errors

    - connect with SCP client (or SSH client) to an ESXi hypervisor to  the following directory path /vmfs/volumes/storage/vmware_appliances_folder

    - try copying identical ISO files as you did in your previous tests

    Now I think you'll know where the problem is. What's on vmware vSphere beautiful is that it's still Linux. 

    Regards

    alda

Reply
  • 0

    Hello John,

    Copying errors on a vmware storage are very often caused by certificate issues, it is true.

    However, to do the following simple test:

    - activate a SSH server on some ESXi hypervisor which is connected to a storage where you detected copying errors

    - connect with SCP client (or SSH client) to an ESXi hypervisor to  the following directory path /vmfs/volumes/storage/vmware_appliances_folder

    - try copying identical ISO files as you did in your previous tests

    Now I think you'll know where the problem is. What's on vmware vSphere beautiful is that it's still Linux. 

    Regards

    alda

Children
  • 0 in reply to alda

    I can copy files via SCP from the Main Site to the Remote Site.  While that solves my immediate issue, I would rather not keep SSH enabled or have admins with that level of file access to the Hosts.  I can not be the only one with this setup.  If it is working for someone else then please let me know.