#1 Global Leader in Data Protection & Ransomware Recovery

Veeam Backup for AWS Private Network Deployment Automation

KB ID: 4552
Product: Veeam Backup for AWS | 7.0
Published: 2024-02-28
Last Modified: 2024-02-28
mailbox
Get weekly article updates
By subscribing, you are agreeing to have your personal information managed in accordance with the terms of Veeam's Privacy Notice.

Cheers for trusting us with the spot in your mailbox!

Now you’re less likely to miss what’s been brewing in our knowledge base with this weekly digest

error icon

Oops! Something went wrong.

Please try again later.

Purpose

This article provides information about Veeam Backup for AWS support for private deployment mode. It will explain how to use the attached script to configure network settings for buckets (used as repositories) and workers (used for backups).

To learn more about implementing Private Deployment Mode, review the Enabling Private Network Deployment section of the Veeam Backup for AWS User Guide.

Diagram
Diagram of required infrastructure for private deployment mode.

Solution

Package Contents

The download package contains five files:

  • 00 Bucket.json — CloudFormation details for configuring buckets
  • 10 Worker.json — CloudFormation details for configuring workers in all regions
  • 15 Vb.json — CloudFormation details for configuring the Veeam Backup server
  • 20 BucketRoute.json — CloudFormation details for configuring buckets routing
  • deploy.sh — Script to perform the actual deployment

No changes to the files are necessary to make them work, simply pass the expected arguments to the deploy.sh and it will handle the rest.

However, if required, the naming of tag values and other details can be changed to your liking.
 

Functionality

This script will allow you to deploy VPCs with all required settings for:

  • Veeam Backup appliance (configured with two subnets: public and private NAT gateways)
  • Workers (you will have to specify all regions you’re going to work with as parameters within deploy.sh)
  • Bucket
     

Deploy.sh Argument Requirements

When executing the deploy.sh script, two sets of parameters have particular requirements that you must ensure you accommodate:

  • The worker_regions and worker_cidrs parameters:
    • They must be a list of values separated by a comma (without any spaces).
    • The number of worker_regions and workers_cidrs specified must match (e.g., if you specify three worker regions, there must be three worker cidrs).
    • The order of the values specified for worker_regions and worker_cidrs must match (i.e., the first worker_region specified must match the first worker_cidrs value specified, and so on).
  • The vb_public_cidr and vb_private_cidr values must be a subset of the vb_cidr value. The public and private cidr values must not overlap each other.
The deploy.sh script does not employ any sanity checking of arguments provided to it. You must ensure you provide the values it expects in the correct format and order. Review the execution example below and adapt the examples to your scenario.

Example of Script Execution

The deploy.sh script processes eight arguments during its execution, which may be passed using an easier-to-read multi-line input format or all in one line.

Example Explanation

In the examples below, the script will perform the following tasks:

  • Configure a bucket in ap-southeast-2 (Asia Pacific (Sydney))
  • Configure workers to be able to run in ap-northeast-1 (Asia Pacific (Tokyo)) and ap-southeast-2 (Asia Pacific (Sydney))
  • Prepare ap-southeast-2 (Asia Pacific (Sydney)) for running the Veeam Backup server

 

Method 1: Multi-Line Input of Arguments (Easier to Read)

Note that each line is executed sequentially, assigning values to variables and then excuting the deploy.sh command using those variables.

#Example Only. Replace values with your own.
bucket_region="ap-southeast-2"
bucket_cidr="10.0.0.0/16"
worker_regions="ap-northeast-1,ap-southeast-2"
worker_cidrs="10.2.0.0/16,10.3.0.0/16"
vb_region="ap-southeast-2"
vb_cidr="10.10.0.0/16"
vb_public_cidr="10.10.1.0/24"
vb_private_cidr="10.10.2.0/24"

#Execute script using variable values above.
bash deploy.sh \
"$bucket_region" \
"$bucket_cidr" \
"$worker_regions" \
"$worker_cidrs" \
"$vb_region" \
"$vb_cidr" \
"$vb_public_cidr" \
"$vb_private_cidr"
Method 2: One-Line Argument Input

In this method, each argument the deployed.sh script would expect is provided on the same line as the deploy.sh.

Example formatting:

bash deploy.sh "ap-southeast-2" "10.0.0.0/16" "ap-northeast-1,ap-southeast-2" "10.2.0.0/16,10.3.0.0/16" "ap-southeast-2" "10.10.0.0/16" "10.10.1.0/24" "10.10.2.0/24"
bash deploy.sh <bucket_region> <bucket_cidr> <worker_regions> <worker_cidrs> <vb_region> <vb_cidr> <vb_public_cidr> <vb_private_cidr>

Download Information

Download Automation Package

Filename: KB4552_CF_Templates_20240208.zip

MD5: B74864147F404B0D15C714C00C234D45
SHA1: 2EF6F8E109A210FEE7EE333F9AF1F087BDBEB3B4

To submit feedback regarding this article, please click this link: Send Article Feedback
To report a typo on this page, highlight the typo with your mouse and press CTRL + Enter.

Spelling error in text

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.
Thank you!

Thank you!

Your feedback has been received and will be reviewed.

Oops! Something went wrong.

Please try again later.

You have selected too large block!

Please try select less.

KB Feedback/Suggestion

This form is only for KB Feedback/Suggestions, if you need help with the software open a support case

By submitting, you are agreeing to have your personal information managed in accordance with the terms of Veeam's Privacy Notice.
This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.
Verify your email to continue your product download
We've sent a verification code to:
  • Incorrect verification code. Please try again.
An email with a verification code was just sent to
Didn't receive the code? Click to resend in sec
Didn't receive the code? Click to resend
Thank you!

Thank you!

Your feedback has been received and will be reviewed.

error icon

Oops! Something went wrong.

Please try again later.