NSX Version 6.2.2 – Bug

  • Serious Bug in NSX version 6.2.2 leads to intermediate disconnection of the Guest VMs.
  • The issue identified is due to the reason that NSX controller shows disconnected in the Web Client.
  • This leads to data path issues for VNIs handled by the disconnected controller.
  • VMware published the below KB article, explanining that the issue is due to the IPSec Re-keying feature which is disabled by default in the version 6.2.2

Cause:


This issue occurs because IPSec re-keying is disabled in NSX-V 6.1.5, 6.1.6, 6.2, 6,2,1 and 6.2.2 releases to avoid hitting another known IPSec issue.

https://kb.vmware.com/selfservice/search.do?cmd=displayKC&docType=kc&docTypeID=DT_KB_1_1&externalId=2146973

Recommendation is to disable the IPSec communication between the NSX controller or upgrade to version 6.2.4

I recommend to disable the IPSec rather than upgrading to the 6.2.4 version.