Hi! We've got an installation of NSX-V with the managers in another DC connected with IPSec to communicate with the ESXi hosts. Sometimes, we lose VM L2 access between hosts and need to reboot the hosts to get VM L2 access between hosts again.
I guess that the NSX agent reinstalls/reconfigures upon reboot of the hosts and that makes the VM L2 connectivity work once again. When this is happening, we get no errors in the vSphere client.
My question is, am I right? Is it a design error to have the NSX managers in another site? Sometimes the IPSec goes down for a short period.