VMC HCX Site Pairing Gotcha

So you are at the point where you have HCX manager appliance deployed and you need to create a site pair with the HCX in the cloud but you keep timeing out or getting an error.

NOTE: This problem only occurs when you are connected to VMC with a Direct Connect over a Private VIF

Problem

If you use the Public URL such as https://hcx.sddc-13-52-170-232.vmwarevmc.com/ or the ip address you either get a timeout or Error that the SSL connection is untrusted

Resolution

Step 1: Get the HCX Manager private IP in VMC. Login to the console and open your SDDC, click networking and security tab, on the left side go to gateway firewall and click to add new rule, then click Destination, then select System Defined Groups, Notice the HCX private IP.

Step 2: Go back to your on-prem HCX manager and ssh to the console

Edit the etc/hosts file and add the following line and save it

10.xx.xxx.xx hcx-sddc.xx-xx-xx-xx.vmwarevmc.com

 

For example:

10.46.224.23 https://hcx.sddc-13-52-170-232.vmwarevmc.com

 

NOTE: It needs to be your private IP in VMC for the HCX manager and the Public URL

 

Now you should be able to make the site pair

Remember sharing is caring!

One Reply to “VMC HCX Site Pairing Gotcha”

  1. Pingback: VMC on AWS – HCX Private DNS Resolution – VirtualBonzo

Leave a Reply

Your email address will not be published. Required fields are marked *

*

This site uses Akismet to reduce spam. Learn how your comment data is processed.