Traceflow is another monitoring and troubleshooting tool available within NSX. Traceflow injects a packet (L2 or L3) into a vNIC and follows it through the various network overlay components and distributed firewall rules all the way to the destination virtual machine. Let’s have a look at an example.
Networking & Security > Traceflow
Select the traffic type.
Select the source VM.
Select target VM.
Configure the protocol, port, and tcp flags via the advanced options then start the trace.
The trace shows that the packet was dropped due to a firewall rule (id 1006).
Looking at the firewall rule with id 1006, we can see that it’s configured to stop any traffic from web-01a to web-02a.
Let’s disable the firewall rule and rerun the trace.
The trace shows that the packet has been delievered (:
I hope this post is helpful. Thank you for reading.
How useful was this post?
Click on a star to rate it!
Average rating / 5. Vote count:
My name is Amine El Badaoui and I currently live in Aylesbury, a small town in the south east of England
I have been working in the IT industry for few years now and specialise in VMware virtualisation, data centre infrastructure and cloud technologies. Over the years I have obtained numerous industry certifications from Microsoft, Netapp and VMware.I currently work as a VMware Product Engineer @ https://www.rackspace.com/
This blog represents my random technical notes and thoughts. The thoughts expressed here do not reflect my current employer in anyway.