Connect to IOSv router CML node from external subnet in Azure

mp-dvt · ‎03-13-2023

Dear CML community,

I'm fairly new to CML so I decided share my use case and get support from you.

I'm running CML in an Azure VM. The CML nodes are configured with NAT network from the KVM hypervisor.

CML application is working well and I can set up new labs and connect to the CML nodes using the External Connector configured with NAT.

Now my goal is to set up hybrid network between the NAT network in CML and the Azure network. I want to be able to reach a CML node from another Azure VM in the same Azure subnet of the CML VM.

Example:

Azure VM: 10.17.0.1 | CML VM:10.17.0.2 | CML node: 192.168.255.2

Azure VM --> CML node = 10.17.0.1 --> 192.168.255.2

I managed to do so by setting up Azure IP route and IP forward and Firewall rule in CML VM.

I'm able to reach Alpine VM in CML from a secondary Azure VM. Ping and SSH are working.

The issue I'm facing now is that I'm not able to reach an IOSv router node.

That is reachable from the alpine VM node and from the CML VM. Ping and SSH are working.

I was wondering if there is a config in the IOSv router that might block traffic from any external subnet.

I don't understand what could be the reason since the other CML node (alpine) is reachable.

I hope you could facilitate with finding the blocker as I have a basic knowledge related to Cisco devices.

Thanks in advance,

mp-dvt · ‎03-16-2023

Update:

IP route is required in router configuration.

Updated as solved.

james yoder · ‎03-31-2023

How did you go about getting CML set up in Azure? I've been looking at getting it set up in our DEV environment, and so far all I've seen is that Azure doesn't support nested virtualization. I've seen a couple threads on here about getting it set up in AWS or gCloud, but no confirmation on Azure