NPetersen

A nerdy blog by me - Mostly server and VMware related stuff. If you are liking what you see - please follow me below :)
| | |

High latency for VMs in NSX-T (VLAN)

2022-08-15

NSX-T Version: 4.0.0.1.0.20159689

I was experiencing a high latency in NSX-T for all my VMs, and i couldnt figure out why. VMs on the same host, that wasnt on a NSX-T segment had +90ms in latency. I was pinging from a VM on VLAN 10 to a VM thats part of my NSX environment on VLAN 20. Both VMs was on the same host, and I dont have any NSX-T Overlay routing, so it was kinda weird.

Let me first show you how the latency was fluctuating: NSX-T high VM latency

As you can see above the latency was in the low end at 8ms and to the very high end of 150+ ms per ping. Thats not acceptable, and especially not when the VMs are on the same host, and there is only 1 router between the VLANs.

Because my NSX-T networks are based on VLANs, what I did was create a Distributed Port Group in vCenter on the VLAN, and move the VM there.

And that fixed the issue - so with that i know its a thing in my VMware/NSX environment and not my switching/routing. As you can see below, the latency is now sub 1ms which is more acceptable. NSX-T high VM latency DVPG fix

After a lot of trial and error, i tried removing my IDS DFW rule - and that was the issue all along:

NSX-T high VM latency IDS fix

My hosts in my LAB is not the biggest, and as I just said - this is a LAB environment. So it would be fun to see if this is a problem in a production environment aswell. I have had some IDS alerts in the manager, so you might look into this, if you get those type of errors.

© 2023 by Nikolaj Petersen - special thanks to Lednerb
NiPetersen.dk - A personal website for Nikolaj