rp4vm issue

Question

user has a POC environment as below: because user are leak of IP address, they ask  us to use a minimal configuration, RP use one IP for LAN/WAN/DATA, esxi use management IP for ISCSI. when I want to register esxi cluster to rp4vm, the 2 esxi server in subnet 192.168.36.0/24(ESXi3 and ESXi4) are failed to install splitter, It report that the esxi3 and esxi4 HAVE NO IP for iscsi, but esxi1 and esxi2 can work. how can we fix this?

Idan · Answer

Hi there, Are ESX3/4 on the same cluster as 1 and 2 ? Regards, Idan

liuchuanwen · Answer

yes, they are on the same ESXI cluster as 1 and 2.

liuchuanwen · Answer

and vcenter belongs to 192.168.32.0/24 SUBNET.

liuchuanwen · Answer

user say they have no firewall between the 2 subnets, but I don't trust him exactly. I tested with vrpa connectivity diag tool, use vrpa IP to connect PORT 3260 of esxi hosts, but even esxi1 and esxi2 are failed. So I don't know how to make sure VRPA can communicate with esxi by iscsi protocol.

forshr · Answer

Are you using the vSCSI splitter? Regards, Rich

Idan · Answer

Hi there,

iSCSI, unlike mgmt connectivity cannot be routed (in vSphere 6.5 it can but it's not recommended). This means that when a single vNIC topology (WAN/LAN and Data are on the same vNIC), vRPAs and VMKs (ESX Management VMKs) must be on the same subnet.

Hope that helps,

Idan Kentor

RecoverPoint Corporate Systems Engineering

@IdanKentor

liuchuanwen · Answer

hi Idan,There is a description in RP4VM security guide 5.1, it says that firewall should be configured to let ESXI communicate with VRPA iscsi, I think in this situation , there should be a router between ESXI iscsi and vrpa iscsi to pay firewall role. Do you mean this situation can only happen in ESXi 6.5?

Idan · Answer

No, the firewall mentioned in the sec conf guide is the ESXi firewall, there should be a rule in the security profile to allow tcp/3260 and iSCSI service must be enabled.

RecoverPoint

Was this post helpful?