VMware Cloud on AWS and VMware Cloud on Dell EMC Support. Considerations and Limitations
| KB ID: | 2414 |
| Product: | Veeam Backup & Replication 11 |
| Published: | 2017-12-14 |
| Last Modified: | 2021-07-26 |
Challenge
VMware Cloud on AWS and VMware Cloud on Dell EMC are vSphere environments running on AWS and Dell EMC hardware, that needs some specific preparation to allow Veeam Backup & Replication 11.0.0.837 P20210525 or later to work with it. Besides the below-listed preparation and limitations, you can interact with it within Backup & Replication like any other vSphere environment to backup, restore, and replicate VM workloads.
Some VMware features and permissions are not granted by default with these VMware offerings. Thus, some Veeam Backup & Replication features will be limited or inoperable. Depending on VMware update releases, the situation may change, and the features from the table below may become available. Please contact your VMware administrator for timely update.
Solution
Implementation step 1 - Prepare Backup & Replication Server
- Use a new Windows Server and install Veeam Backup & Replication 11.0.0.837 P20210525 or later if you do not have a Veeam Backup Server. The Server can run within any VMware Cloud on AWS/DellEMC SDDC, the ENI connected AWS environment, or on-premises datacenter environments, if the network connection to the VMC vCenter/Veeam Servers and potentially the VMs (for Guest processing) is possible.
- Add DNS network settings so that this Server can resolve Internet DNS names to resolve the fully qualified domain name of the VMC vCenter server.
- Check the below information carefully for any known limitations and configuration steps before you proceed.
Implementation step 2 - Configure VMware Cloud
Firewall Configuration for vCenter connection
The Veeam Backup and Replication Server and Veeam proxy server should be connected to the VMware vCenter using HTTPS through TCP port 443. At VMware Cloud on AWS/DellEMC, there is no need to open ports to the ESXi hosts themselves. As the vCenter Server is by design of VMware Cloud on AWS/DellEMC on another network (Management Network), you need to configure one of the following 3 options:
Implementation step 3 - add vCenter to Veeam Backup & Replication
Add vCenter to the Veeam console.
Create a vCenter User with required rights (Active Directory linked mode) described here, or use the cloudadmin@vmc.local user.
When adding a vCenter server, specify the fully qualified domain name (FQDN) that ends with
vmwarevmc.comorvmc.vmware.com(depending on the URL shown in the VMC interface for the vCenter).
Implementation step 4 - add Veeam Backup Proxy
For any VMware Cloud on AWS/DellEMC SDDC Cluster, deploy at least one Veeam Proxy Server to utilize Virtual Appliance (HOTADD) transport mode. If the Backup & Replication server is deployed in the SDDC Cluster, it may be used as a Backup Proxy.
Note: Linux-based Backup Proxy can not be used with VMware Cloud on AWS/DellEMC as they do not enable specific mandatory VMware VDDK settings.
Implementation step 5 - add Veeam Repository
As VMware Cloud on AWS/DellEMC has only one accessible vSAN disk, it would not be prudent to utilize that disk for both production workloads and backups, it is, therefore, advisable to have an external Backup device to store the backup files. Depending on the use case there are several ways to achieve this with different economic factors. For VMware Cloud on DellEMC a Windows or Linux Server with storage on a separate on-premises environment can be used.
Implementation step 6 - add secondary backup target
It is suggested to create a backup copy to an additional place. Depending on the use case, there are several ways to achieve this with different economic factors. Among other ways, the following technologies can be used:
- Veeam Scale-out Backup Repository – CapacityTier usage. In copy mode, this feature can be used to create additional backup copies at Amazon AWS S3. Make sure to use the internal interface of the S3 target to avoid internet traffic costs.
- For VMware Cloud on AWS, a Veeam Backup Copy Job to a second EC2 Server can be used as an additional Repository. The second EC2 Server can be placed on another AWS Availability Zone or AWS Geo-Location.
- AWS Storage Gateway Software in VTL mode can emulate a Tape Library to write data to S3. Veeam Backup to Tape Jobs can be used with it. For details, see https://www.veeam.com/wp-using-aws-vtl-gateway-deployment-guide.html.
- Veeam Backup Copy Job to on-premises or Veeam Cloud Connect (Enterprise). There is no special configuration needed for this use case besides network and firewall connections. For standard Repository usage on-premises, it is recommended to create a VPN tunnel from VMware Cloud on AWS/DellEMC to the on-premises datacenter. This can be done by the VMC integrated VPN functionality, by Veeam PN, or third-party.
Additional Scenarios
- VMware Cloud on AWS/DellEMC used as Restore target.
- Implementation steps 1-4 are needed.
- Veeam VM Replication.
- Implementation steps 1-5 are needed. The Repository Server (when NOT used for Backups, can run within the VMware Cloud on AWS/DellEMC SDDC to store the Veeam Replication data. On premises standard datacenter to VMC, VMC to VMC and VMC to on premises standard datacenter is possible. Usage of Veeam Availability Orchestrator is possible in specific scenarios. See VAO deployment guide.
VMware Cloud (VMC) specific problems and solutions:
More Information
| KB ID: | 2414 |
| Product: | Veeam Backup & Replication 11 |
| Published: | 2017-12-14 |
| Last Modified: | 2021-07-26 |
Couldn't find what you were looking for?
Please select a spelling error or a typo on this page with your mouse and press CTRL + Enter to report this mistake to us. Thank you!
