Traffic is blocked after activating Deep Security Virtual Appliance (DSVA) Agentless IPS protection

- Updated:
- 24 Nov 2016
- Product/Version:
- Deep Security 8.0
- Deep Security 9.0
- Deep Security 9.5
- Platform:
- VMware ESX 4.1
- VMware ESX 5.0
- VMware ESXi 4.1
- VMware ESXi 5.0
- VMware vCenter 5.0

Summary

After installing DSVA and activating Agentless IPS protection, you noticed that all traffic is being blocked.

Details

One possible cause of blocked traffic is two missing parameters in the DSVA VMX file:

Name: ethernet2.filter0.name
Value: dvfilter-faulter
Name: ethernet2.filter0.param0
Value: dvfilter-dsa

Parameters in the VMX file are not added when the DSVA is deployed through vCenter instead of the Deep Security Manager (DSM). It is not recommended to deploy DSVA using methods other than the DSM, unless approved by Trend Micro.

To resolve the issue, check if your VMX file is missing these parameters, and then do one of the following:

If the parameters are missing, we recommend redeploying the DSVA via the DSM. If redeploying is not an option, only then should you configure the missing parameters using the procedure in this KB article: Correcting packet issues in Deep Security Virtual Appliance (DSVA).
If there is no missing parameter, contact Trend Micro Technical Support.

Rating:

Category:

Configure; Deploy; Install

Solution Id:

1097234

Feedback

Did this article help you?

Thank you for your feedback!

What was the problem with this article?

The image(s) in the article did not display properly.

The article did not provide detailed procedure.

The article is hard to understand and follow.

The video did not play properly.

The article did not resolve my issue.

Others. Please specify.

To help us improve the quality of this article, please leave your email here so we can clarify further your feedback, if neccessary:

We will not send you spam or share your email address.

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.

If you need additional help, you may try to contact the support team. Contact Support

Thanks for voting.

To help us improve the quality of this article, please leave your email here so we can clarify further your feedback, if neccessary:

We will not send you spam or share your email address.

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.