Step 3. Specify Network Settings
At the Network step of the wizard, do the following:
- If you have selected the Account option at step 2 of the wizard, specify an Amazon VPC network and a subnet to which you want to connect worker instances deployed based on the new worker configuration, and choose a security group that will be associated with the instances.
For an Amazon VPC network, a subnet and a security group to be displayed in the lists of available network specifications, it must be created in the selected AWS Region as described in AWS Documentation.
- If you have selected the Organization option at step 2 of the wizard, specify the key and value of the AWS tag associated with the security group, VPC network and subnet to which you want to connect worker instances deployed based on the new worker configuration.
The network specifications with the specified tag must be created in each AWS account and each AWS Regions within the selected AWS Organization, as described in AWS Documentation.
Veeam Backup for AWS will apply the specified network settings to all worker instances that will be deployed based on the new worker configuration. For EFS indexing, Veeam Backup for AWS will also apply these settings to worker instances deployed to process file systems that have mount targets in the selected VPC network.
Important |
|
By default, Veeam Backup for AWS uses public access to communicate with worker instances. That is why the public IPv4 addressing attribute must be enabled for the selected subnet, the selected VPC network must have an internet gateway attached, and the VPC network and subnet route tables must have routes that direct internet-bound traffic to this internet gateway. If you want worker instances to operate in a private network, do either of the following:
- Enable the private network deployment functionality, and configure specific VPC endpoints for the subnet to let Veeam Backup for AWS use private IPv4 addresses as described in section Configuring Private Network Deployment.
For the list of specific endpoints required to perform backup and restore operations, see Configuring Private Networks.
- Configure VPC endpoints as described in section Appendix C. Configuring Endpoints in AWS.