05-29-2013 08:23 PM
Hello everyone,
I depoly N1KV\VSG\VNMC in my lab enviroment, using vsg security profile for my vm's access control, i find that every is ok when using IP as condition ;
but when i using vm attribute as rule condition,the policy don't work,for example using vm name .when i ssh to my vsg,then type show vsg vm , i get this
firewall# show vsg vm
VM uuid : 52484c20-5acb-3197-e668-f56cd70b5c85
VM attributes :
cluster-name :
host-name :
name :
os-fullname :
os-hostname :
resource-pool :
tools-status :
vapp-name :
Zone(s) :
--------------------------------------------------------------------------------
VM uuid : 501018d6-a4a0-db1c-21d0-d6b9707011b8
VM attributes :
cluster-name :
host-name :
name :
os-fullname :
os-hostname :
resource-pool :
tools-status :
vapp-name :
Zone(s) :
this result tell me the vsg get nothing from vcenter without VM uuid,in the Administration---VM Managers,the vcenter state is up,admin state enable,operational state up.
so i want to know here some config i missing or wrong?i appreciate for you help!
Best regard!
xunda.
06-04-2013 08:28 PM
Hi,
Make sure you add your vCenter info in VNMC, see http://www.cisco.com/en/US/docs/unified_computing/vnmc/sw/1.3/VNMC_GUI_Configuration/b_VNMC_GUI_Configuration_Guide_1_3_chapter_0111.html
so VNMC able to fetch and learn VM and host attributes from vCenter.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide