run_traceflow
Trace packet paths through NSX overlay to identify firewall rule hits and drop reasons for troubleshooting connectivity issues.
Instructions
Run a Traceflow to trace a packet's path through the NSX overlay.
Injects a synthetic probe packet from the source logical port and returns hop-by-hop observations including DFW rule hits and drop reasons.
Args: src_lport_id: Source logical port ID (attachment UUID of the VM NIC). src_ip: Source IP address for the probe packet. dst_ip: Destination IP address. protocol: IP protocol — TCP, UDP, or ICMP (default: TCP). dst_port: Destination port for TCP/UDP probes (default: 80). src_port: Source port for TCP/UDP probes (default: 1234). ttl: IP TTL value (default: 64). timeout_seconds: Maximum seconds to wait for completion (default: 20). target: Optional NSX Manager target name from config.
Input Schema
| Name | Required | Description | Default |
|---|---|---|---|
| src_lport_id | Yes | ||
| src_ip | Yes | ||
| dst_ip | Yes | ||
| protocol | No | TCP | |
| dst_port | No | ||
| src_port | No | ||
| ttl | No | ||
| timeout_seconds | No | ||
| target | No |