Simplifying cloud to cloud connectivity with Veeam PN

Source: Veeam

Veeam PN was launched as part of Veeam Recovery to Microsoft Azure, but Veeam PN has some great standalone use cases. In the last post, I showed how to access home lab/office machines while on the road using Veeam PN.

In this blog post, I’ll be covering a very real-world solution with Veeam PN where it will be used to easily connect geographically disparate cloud hosting zones, enabling you to achieve High Availability for applications and provide cross cloud application and services access. This is probably the most exciting of the three use cases I will cover in this blog series on Veeam PN, and with multi-cloud adoption in full swing, this is a very timely and useful capability.

Taking this use case one step further, how can cloud-to-cloud Availability be achieved in the most cost effective and operationally efficient way? There are obviously a few ways to connect clouds, and many other solutions out there, whether that be via some sort of MPLS, IPSec, L2VPN or stretched network solution. What Veeam PN achieves is simplicity — it’s very easy to configure, and it’s also very cost effective (remember it’s FREE). This makes it one of the best ways to connect one to one or one to many cloud zones with little to no overhead.

Cloud-to-cloud-to-cloud Veeam PN appliance deployment model

In this scenario, I want each vCloud Director zone to have access to the other zones and be always connected. I also want to be able to connect in via the OpenVPN endpoint client and have access to all zones remotely. All zones will be routed through the Veeam PN Hub Server deployed into Azure via the Azure Marketplace. To go over the Veeam PN deployment process, read my first post and also visit this VeeamKB that describes where to get the OVA and how to deploy and configure the appliance for first use.


  • Veeam PN Hub Appliance x 1 (Azure)
  • Veeam PN Site Gateway x 3 (One Per Zettagrid vCD Zone)
  • OpenVPN Client (For remote connectivity)

Networking overview and requirements

  • Veeam PN Hub Appliance – Incoming Ports TCP/UDP 1194, 6179 and TCP 443
    • Azure VNET
    • Azure Veeam PN Endpoint IP and DNS Record
  • Veeam PN Site Gateways – Outgoing access to at least TCP/UDP 1194
    • Perth vCD Zone
    • Sydney vCD Zone
    • Melbourne vCD Zone
  • OpenVPN Client – Outgoing access to at least TCP/UDP 6179

In my setup, the Veeam PN Hub Appliance has been deployed into Microsoft Azure mainly because that’s where I was able to test out Veeam PN initially, but also because in theory it provides a centralized, highly available location for all the site-to-site connections to terminate into. This central hub can be deployed anywhere, and as long as it’s got HTTPS connectivity configured correctly to access the web interface, you can start to configure your site and standalone clients.

Configuring site clients for cloud zones (site-to-site)

In order to configure the Veeam PN Site Gateway you’ll need to register the sites from the Veeam PN Hub Appliance. When you register a client, Veeam PN generates a configuration file that contains VPN connection settings for the client. You must use the configuration file (downloadable as an XML) to set up the Site Gateways. Referencing the diagram at the beginning of the post, I needed to register three separate client configurations as shown below.

Once this has been completed, you need to deploy a Veeam PN Site Gateway in each vCloud Hosting Zone, and because we are dealing with an OVA, the OVFTool will need to be used to upload the Veeam PN Site Gateway appliances. I’ve previously created and blogged about an OVFTool upload script using PowerShell. Each Site Gateway needs to be deployed and attached to the vCloud vORG Network that you want to extend, in my case it’s the, and vORG Networks.

Once each vCloud zone has the Site Gateway deployed and the corresponding XML configuration file added, you should see all sites connected in the Veeam PN Dashboard.

At this stage, we have connected each vCloud Zone to the central Hub Appliance which is configured now to route to each subnet. If I was to connect an OpenVPN Client to the Hub Appliance, I could access all subnets and be able to connect to systems or services in each location. Shown below is the Tunnelblick OpenVPN Client connected to the Hub Appliance showing the injected routes into the network settings.

You can see above that the, and static routes have been added and set to use the tunnel interfaces default gateway which is on the central Hub Appliance.

Adding static routes to cloud zones (cloud to cloud to cloud)

To complete the setup and have each vCloud zone talking to each other, we need to configure static routes on each zone network gateway/router so that traffic destined for the other subnets knows to be routed through to the Site Gateway IP, through to the central Hub Appliance onto the destination and then back. To achieve this, you just need to add static routes to the router. In my example, I have added the static route to the vCloud Edge Gateway through the vCD Portal as shown below in the Melbourne Zone.


To summarize, below are the 5 steps that were taken to setup and configure the configuration of a cloud-to-cloud-to-cloud network using Veeam PN and its site-to-site connectivity feature. By doing so, allowing cross-site connectivity while enabling access to systems and services via the point-to-site VPN:

  1. Deploy and configure Veeam PN Hub Appliance
  2. Register cloud sites
  3. Register endpoints
  4. Deploy and configure Veeam PN Site Gateway in each vCloud zone
  5. Configure static routes in each vCloud zone

These five steps took me less than 30 minutes, which also took into consideration the OVA deployments as well. At the end of the day, I’ve connected three disparate cloud zones which all access each other through a Veeam PN Hub Appliance deployed in Microsoft Azure. From here, there is nothing stopping me from adding more cloud zones that could be situated in any public cloud, whether AWS, IBM or Google. I could even connect my home office or a remote site to the central Hub to give full coverage.

The key here is that Veeam Powered Network offers a very simple solution to what is traditionally a complex and costly one. Again, this will not suit all use cases, but at its most basic functional level, it’s a great solution for customers who have a need for cross-cloud connectivity.

Go give it a try! Get started with Veeam PN.

The post Simplifying cloud to cloud connectivity with Veeam PN appeared first on Veeam Software Official Blog.

Simplifying cloud to cloud connectivity with Veeam PN

Veeam Availability Console U1 is now available

Source: Veeam

Managed service providers (MSPs) are playing an increasingly critical role in helping businesses of all sizes realize their digital transformation aspirations. The extensive offerings made available to businesses continue to allow them to shift day-to-day management onto you, the MSP, while allowing them to focus on more strategic initiatives. One of the most notable services being backup and recovery.

We introduced Veeam Availability Console in November 2017, a FREE, cloud-enabled management platform built specifically for service providers. Through this console, service providers can remotely manage and monitor the Availability of their customer’s virtual, physical and cloud-based workloads protected by Veeam solutions with ease. And, in just a few short months, we’ve seen incredible adoption across our global Veeam Cloud & Service Provider (VCSP) partner base, with overwhelmingly positive feedback.

Today, I’m happy to announce the General Availability (GA) of Veeam Availability Console U1, bringing with it some of the most hotly requested features to help further address the needs of your service provider business.

Enhanced Veeam Agent support

The initial release of Veeam Availability Console was capable of monitoring Veeam Agents deployed and managed by the service provider through Veeam Availability Console. New to U1 is the ability to achieve greater insights into your customer environments with new support that extends to monitoring and alarms for Veeam Agents that are managed by Veeam Backup & Replication. With this new capability, we’re enabling you to extend your monitoring services to even more Veeam customers that purchase their own Veeam Agents, but still want the expertise that you can bring to their business. And yes, this even includes monitoring support for Veeam Agent for Linux instances that are managed by Veeam Backup & Replication.

New user security group

VCSP partners wanting to delegate Veeam Availability Console access without granting complete control (like local administrator privileges) can now take advantage of the new operator role. This role permits access to everything within Veeam Availability Console essential to the remote monitoring and management of customer environments (you can even assign access to your employees on a company-by-company basis), but excludes access to Veeam Availability Console server configuration settings. Now you can assign access to Veeam Availability Console to your staff without exposing settings of the Veeam Availability Console server.

ConnectWise Manage integration

We’re introducing native integration with ConnectWise Manage. Through this new, seamless integration (available in the plugins library tab), the management, monitoring and billing of Veeam Availability Console-powered cloud backup and Disaster Recovery as a Service (DRaaS) can now be consolidated with your other managed service offerings into the single pane of glass that is ConnectWise Manage. This integration makes it easier and more efficient to expand your services portfolio while making administration of multiple, differing managed services much more efficient.

Matt Baldwin, President of Vertisys said, “This integration is exactly what my business needs to streamline our managed backup and DRaaS offering. The interface is clean and intuitive with just the right number of features. We project a yearly savings of 50 to 60 hours.”

Let’s take a closer look at some of the integration points between Veeam Availability Console and ConnectWise Manage.

Mapping companies

Firstly, the integration will help avoid a lot of manually intensive work by automatically synchronizing and mapping companies present in ConnectWise Manage with those in Veeam Availability Console. Automatic mapping is achieved through the company name. Before mapping is fully-complete, Veeam Availability Console allows you to check over what it’s automatically mapped before committing to the synchronization. If no match is found, mapping can be completed manually to an existing company or through the creation of a new company, with the option to send login credentials for the self-service customer portal, too.

Ticket creation

The integration also enables you to more quickly resolve issues before they impact your customers’ business through automatic ticket creation within ConnectWise Manage from Veeam Availability Console alarms. You can specify from the list of available alarms within Veeam Availability Console all those that are capable of triggering a ticket (e.g. failed backup, exceeding quota, etc.), and to which service board within ConnectWise Manage the ticket is posted. We’ve also enabled you with the capability to set delays (e.g. 1 minute, 5 minutes, 15 minutes, etc.) between the alarm occurring and the ticket posting, so issues like a temporary connectivity loss that self-resolves doesn’t trigger a ticket immediately. Every ticket created in ConnectWise Manage is automatically bundled with the corresponding configuration, such as representing a computer managed by Veeam Availability Console. This makes it incredibly easy for support engineers to find which component failed and where to go fix it. The integration also works in reverse, so that when tickets are closed within ConnectWise Manage, the corresponding alarm in Veeam Availability Console will be resolved.


The final part of the integration extends to billing, reducing complexities for you and your customers by consolidating invoices for all the managed services in your portfolio connected to ConnectWise Manage into a single bill. Not only this, but the integration allows for the automatic creation of new products in ConnectWise Manage, or mapping to existing ones. Service providers can select which agreement Veeam Availability Console-powered services should be added to on a per-customer basis, with agreements updated automatically based on activity, quota usage, etc.

Enhanced scalability

Finally, we’ve enhanced the scalability potential of Veeam Availability Console, enabling you to deliver your services to even more customers. The scalability improvements specifically align to the supported number of managed Veeam Backup & Replication servers, and this is especially useful when paired with the enhanced Veeam Agent support discussed earlier. This ensures optimal operation and performance when managing up to 10,000 Veeam Agents and up to 600 Veeam Backup & Replication servers, protecting 150-200 VMs and Veeam Agents each.

We’re very excited about the new possibilities this latest update will bring for not only your business, but also for your customers’ and their Availability. To get started with these new features of Veeam Availability Console, download the latest update today — it’s FREE!

The post Veeam Availability Console U1 is now available appeared first on Veeam Software Official Blog.

Veeam Availability Console U1 is now available

PowerShell script to deploy Veeam Backup & Replication

Source: Veeam

In this blog post, I will show you how you can deploy Veeam Backup & Replication 9.5 with Update 3 to a virtual machine. This is a really handy, little script because it can help you get Veeam going in your lab in a snap. The basic steps to accomplish this are as follows.

1. Create a virtual machine running Windows Server 2016. In my case, I created a Hyper-V VM called Management01.

2. Download a copy of Veeam Backup & Replication and prepare either an already existing license file or request a trial one from the same download page.

3. In our case, we stored both files in F:Temp1

4. Grab a copy of the PowerShell script from my GitHub repository and save it to the same F:Temp1 location

5. Open an Administrative PowerShell Prompt and change the path to F:temp1. Then type Import-Module .Install-Veeam-HyperV.PS1 -Force -Verbose and press Enter. This will load the Install-Veeam Module which we will use to deploy Veeam to our lab.

6. Type Install-Veeam -VMName Management01 -GuestOSName -Management01 -VMPath F:dcbuild_test and run it.

7. On the Please Select the Veeam 9.5 UR3 ISO window, browse to F:temp1VeeamBackup&Replication_9.5.0.1535.Update3.iso

8. On the Please Select the Veeam License File window, browse to your license file prepared at step 2. In my case, I used my Veeam NFR license.

9. Input the credentials for your lab. In my case, I will install using my Domain Administrator Account “MVPDaysAdministrator”. We will pipe this into the VM using PowerShell direct with the $DomainCred variable.

At this point it is time to sit back and relax as the next steps will happen automatically:

    1. Add a new VHDx file from the host
    2. Format the new VHDx file and giving it a volume label of Veeam
    3. Mount the VHDx to the host
    4. Copy the Veeam ISO specified earlier
    5. Copy the Veeam license file specified earlier
    6. Install 2012 System CLR types
    7. Install SQL Express
    8. Install the Veeam Backup & Replication 9.5 server
    9. Install the Veeam Backup Console
    10. Install the Explorer for Active Directory
    11. Install the Explorer for Exchange
    12. Install the Explorer for SQL
    13. Install the Explorer for Oracle
    14. Install the Explorer for SharePoint
    15. Install the Enterprise Manager web and Cloud Portal
    16. Finally update to Rollup 3

Your finished product will look just like this:

I hope you enjoyed this post, and please feel free to update my code and use it in your lab. As always, happy learning!

See more

The post PowerShell script to deploy Veeam Backup & Replication appeared first on Veeam Software Official Blog.

PowerShell script to deploy Veeam Backup & Replication

Key takeaways from VeeamON 2018: Hyper-Availability is the new black

Source: Veeam

VeeamON 2018 is still fresh in my memory after three busy, yet inspiring conference days in Chicago, IL. Over 2,200 attendees from all around the world attended VeeamON 2018, and I had the chance to catch up with old friends and make some new ones as well. There were many things to learn, discover and experience during the conference. Here are the most important moments from VeeamON 2018.

New messaging

As we step forward into the enterprise neighborhood, during VeeamON Chicago, we introduced our new messaging and vision: To be the most trusted provider of Intelligent Data Management solutions to meet the expectations of a world that demands the Hyper-Availability of data. This mindset shift reflects the new way organizations deal with data, which is growing rapidly, is crucial for business and is highly distributed across many different platforms and infrastructures. Therefore, enterprise data requires a new solution, one that is able to transition from traditional policy-based data management to a more behavior-based system.

These are the five stages of the journey to Intelligent Data Management for the Hyper-Available Enterprise:

Veeam Innovation Awards

The inaugural edition of the Veeam Innovation Awards took place during VeeamON in Chicago. We celebrated several organizations that were innovative while providing state-of-the-art Veeam-powered solutions for enterprises across the globe. The winners were iland, Merrimac Solutions, Probax and SIS. To find out more about the Veeam Innovation Awards 2018, check out this blog post.

Net Promoter Score update

We announced our current Net Promoter Score (NPS) of 73. The research was conducted by an independent third-party vendor and is 5x the industry average, showing immense satisfaction from our customers, the core of our business!


My favorite sessions at VeeamON 2018 were Veeam Backup for Microsoft Office 3650 and What’s New and Deep Dive, held by Mike Resseler and Kostya Yasyuk. Microsoft Office 365 is a great tool that most of us use on a daily basis, and big things are coming in Veeam Backup for Microsoft Office 365 2.0:

  • NEW Data protection for OneDrive for Business — fast, efficient backup of Office 365 OneDrive for Business accounts with the ability to restore and export files and folders (including OneNote notebooks) with the NEW Veeam Explorer for Microsoft OneDrive
  • NEW Data protection for SharePoint — The ability to back up SharePoint Online and SharePoint on premises with fast, flexible recovery of SharePoint sites, documents, libraries and lists with the already-familiar Veeam Explorer for Microsoft SharePoint now built-in
  • ENHANCED Major ease-of-use and backup flexibility improvements in a newly redesigned job wizard to make setup, search and maintaining visibility into your data easier than ever
  • NEW Veeam Backup for Microsoft Office 365 Free Edition

It’s important to know that Microsoft’s responsibility is the Office 365 infrastructure, and the data remains the customer’s responsibility. Backing up Office 365 data is about integrity, compliance and having access to and control of data.

Hands-on lab

During the event, when I wasn’t attending sessions, you could find me in the Expo Hall, attending live demos at our sponsors’ booths, engaging in conversations with other IT fellows or challenging people to table tennis. Another point of interest at the Expo Hall was the Hands-On Lab, where attendees came to see the Veeam solutions in action.

Did you miss VeeamON 2018, but you are still interested in experiencing the event? No problem — you can replay the general sessions and watch the VeeamON 2018 recap from Veeam LIVE.

See also

The post Key takeaways from VeeamON 2018: Hyper-Availability is the new black appeared first on Veeam Software Official Blog.

Key takeaways from VeeamON 2018: Hyper-Availability is the new black