One Bad Pixel
Insert catchy pixelish tagline here.
«
»

Can’t SSH from ESXi 6.5 to another host

While working on migrating some VMs from one ESXi 6.5 host to another using SCP, I realized I was unable to SSH/SCP from one host to another. I had confirmed that I enabled TSM-SSH on the destination host, but still nothing.

I looked all over, recalling in previous versions using the vSphere client that there was a firewall policy that you could change but it defaulted to allow the outbound SSH connections. In ESXi 6.5, the default firewall policy defaults to not allowing outbound SSH connections, so it is not possible to use SCP to send/receive files from another host without fixing it.

Fortunately, fixing it is super easy, using esxcli.

esxcli network firewall ruleset set -e true -r sshClient

Thats it! Now you should be able to SSH from your ESXi 6.5 host.

 

Leave a comment!