Veeam Powered Network v2.1 - Simple and secure VPN networking
Reference : Veeam PN Version: 22.214.171.1241
Article: RELEASED: VEEAM POWERED NETWORK 2.1
Networking is one of the most complicated aspects of any IT solution. Whether establishing a connection to a remote site, connecting branch offices together or extending on-premises networks to the cloud – organizations need an easier way to manage their networking needs.
Veeam® PN (Powered Network) is a FREE, easy-to-use, lightweight software defined networking (SDN) tool designed to simplify and orchestrate VPN networking and configuration tasks, eliminating manual networking connectivity and complicated VPN installation procedures. Administrators can create, configure and connect site-to-site or point-to-site VPN tunnels through an intuitive UI within a few clicks.
Out of the box VeeamPN network configuration is set to DHCP.
The appliance must be deployed in a network with a DHCP server to be assigned a network IP, this is due to the fact VeeamPN 2.1 does not have any cli editors installed and will need internet access for this.
Log in with the default username: root and password: VeeamPN
When trying to use any cli editors like vi, vim, nano, or gedit there will the “command not found” error because these editors need to be installed.
Run the following commands:
sudo apt-get update
sudo apt-get install nano (will use the nano cli editor)
Netplan configuration files are stored in the /etc/netplan directory and have the extension. yaml. The file is named 01-netcfg.yaml in VeeamPN
Open the YAML configuration file with the nano text editor
Sudo nano /etc/netplan/01-netcfg.yaml
To assign a static IP address to ens160 interface edit the file as follows:
- Set DHCP to no dhcp4: yes
- Specify the static IP address 192.168.121.199/24. Under addresses: you can add one or more IPv4 or IPv6 IP addresses that will be assigned to the network interface.
- Specify the gateway gateway4: 192.168.121.1
- Under nameservers, specify the nameservers addresses: [126.96.36.199, 188.8.131.52]
When editing Yaml files make sure you follow the YAML code indent standards as it might not work if there is a syntax error in the configuration.
Once done save and close the file and apply the changes with:
That’s it! You have assigned a static IP to VeeamPN.
Veeam PN offers two types of web-based portals:
Network hub portal is an administrative console on the network hub. The network hub portal is intended for Veeam PN Administrators managing the VPN organized with the help of Veeam PN. Veeam PN Administrators can use the portal to register and manage clients, configure general application settings, set up alerts, monitor network activities and so on.
Site gateway portal is an administrative console on a site gateway appliance. Administrators of networks in which site gateways are deployed can use the gateway portals to configure local network settings, set up alerts, monitor network activities and so on.
Veeam PN portals are deployed when you set up the network hub and site gateways. Veeam PN portals are accessible over HTTPS. You can use any supported web browser to work with portals remotely.
Accessing Network Hub Portal
To access the network hub portal:
- In the address bar of a web browser, enter the address of the network hub portal:
[For on-premises deployment] https://assigned_IP
[For service provider deployment or during a full failover] https://public_IP:6443
- In the Username and Password fields, specify credentials of a user account with Portal Administrator permissions.
*Username – root Password – assigned password
- Select the Remember me check box. If you enable this option, you will not have to re-log in to the portal (unless you perform manual logout). If you do not enable this option, you will have to re-log in to the portal if the work session remains idle for 10 minutes.
- Click Login
You can register three types of clients in the network hub portal:
Registering Standalone Computers
For AIT customers who want to register a standalone computer to test VPN Connectivity to their Cloud Connect Replicated Infrastructure. Register a standalone computer:
- Log in to the network hub portal as a Portal Administrator.
- In the configuration menu on the left, click Clients.
- At the top of the clients list, click Add.
- At the Type step of the wizard, select Standalone computer.
- At the Client step of the wizard, enter a name for the standalone computer. The computer name will be displayed in the list of clients.
- Select the Use HUB server as a default gateway check box. With this option enabled, Veeam PN will use the network hub as a default gateway and route all Internet traffic for the client over the network hub.
- At the Summary step of the wizard, review details of the client and click Finish to close the wizard.
After you click Finish, Veeam PN will generate an OVPN file with VPN settings for the registered client. The OVPN file will be automatically downloaded to the default downloads folder. Do not delete the downloaded file: you will need it to configure VPN connection settings on the standalone computer.
Networking requirements in Tenant Fail-over Plan
- Veeam PN Hub Appliance – Incoming Ports TCP/UDP 1194, 6179 and TCP 443
- Veeam PN Site Gateway – Outgoing access to at least TCP/UDP 1194
- OpenVPN Client – Outgoing access to at least TCP/UDP 6179