Accepted Solutions
Hi Juraj,
You can check for ICMP connectivity, but if the controllers are managed by Cisco on AWS they probably will not respond to ICMP.
The one thing you'll need to make sure the devices are able, is to resolve the vBond name, which is the first point of contact for the routers to board the Overlay.
Check for the device connectivity to each TLOC gateway, as the device is only able to install the routes if there's connectivity to the next hop. If the next hop is a FW which doesn't respond to ICMP you'll need to disable the track-default-gateway in order for the device install the routes.
if the devices are behind a FW you'll need to make sure that the DTLS or TLS ports are open for the IP address of the Controller devices
- vManage
- vSmarts
- vBonds
The FW ports are those in the image below:
If you can reach the Controllers, resolve the vBond name and those ports are open (if needed) than you should be good to go.
Best Regards,
Please rate helpful posts
Hi Juraj,
You can check for ICMP connectivity, but if the controllers are managed by Cisco on AWS they probably will not respond to ICMP.
The one thing you'll need to make sure the devices are able, is to resolve the vBond name, which is the first point of contact for the routers to board the Overlay.
Check for the device connectivity to each TLOC gateway, as the device is only able to install the routes if there's connectivity to the next hop. If the next hop is a FW which doesn't respond to ICMP you'll need to disable the track-default-gateway in order for the device install the routes.
if the devices are behind a FW you'll need to make sure that the DTLS or TLS ports are open for the IP address of the Controller devices
- vManage
- vSmarts
- vBonds
The FW ports are those in the image below:
If you can reach the Controllers, resolve the vBond name and those ports are open (if needed) than you should be good to go.
Best Regards,
Please rate helpful posts
