KVM DataSync Agent partial network connectivity failure

Question

I am attempting to deploy a KVM DataSync Agent on my CentOS7 host, and I am stuck on the activation step.  
After the DataSync agent starts it is supplied with an address 192.168.122.19  
I have configured an AWS VPC (CIDR 10.0.0.0/16) and established a site-to-site VPN tunnel to my on-prem private network.  
I can ping and ssh from my site to an EC2 instance (10.0.1.252) in my VPC.  
I can ping from an EC2 instance in my VPC back to various machines in my private network (192.168.1.0/24).  
I have created a datsync Endpoint in my VPC it was assigned 10.0.1.138 address  
When I run the "Test Network Connectivity" option from within the DataSync Agent console it partially fails  
  
10.0.1.138:443 FAILED  
10.0.1.138:1024-1064  
10.0.1.138:1026 FAILED  
10.0.1.138:1027 FAILED  
10.0.1.138:1029 FAILED  
54.201.223.107:22 PASSED  
0.amazon.pool.ntp.org:123 PASSED  
1.amazon.pool.ntp.org:123 PASSED  
2.amazon.pool.ntp.org:123 PASSED  
3.amazon.pool.ntp.org:123 PASSED  
  
Any suggestions on what I might have configured incorrectly?  
  
thanks

Answer

Good to hear!  Network issues are most often the cause of activation errors.  
  
Regards,  
Jeff  
AWS DataSync

Answer

Well apparently my Libreswan IPsec VPN tunnel is a bit fragile. It seems to have gone dead at some point between my ping/ssh connectivity tests and configuring my DataSync Agent. I restarted IPsec service (systemctl restart ipsec), and now the Network Connectivity tests complete successfully, and I am able to activate the agent.

KVM DataSync Agent partial network connectivity failure

Relevanter Inhalt