VPN Solutions for Zerto Virtual Replication to Azure. SoftEther Installation Guide

Similar documents
VPN Solutions for Zerto Virtual Replication to Azure. IPSec Configuration Guide

How to Deploy the Barracuda Security Gateway in the New Microsoft Azure Management Portal

The Balabit s Privileged Session Management 5 F5 Azure Reference Guide

Deploying and Provisioning the Barracuda Web Application Firewall in the New Microsoft Azure Management Portal

Silver Peak EC-V and Microsoft Azure Deployment Guide

Microsoft. AZ-100 EXAM Azure Infrastructure and Deployment. m/ Product: Demo. For More Information:

Configuring AWS for Zerto Virtual Replication

How to Configure Azure Route Tables (UDR) using Azure Portal and ARM

FortiGate. on OCB FE Configuration Guide. 6 th December 2018 Version 1.0

Active Directory Services with Windows Server

How to Configure VNET peering with the F-Series Firewall

DOCUMENTATION. UVM Appliance Azure. Quick Start Guide

LoadMaster for Azure Resource Manager. Feature Description

Microsoft Azure Course Content

Course Outline. Module 1: Microsoft Azure for AWS Experts Course Overview

Active Directory Services with Windows Server

Check Point vsec for Microsoft Azure

Azure Compute. Azure Virtual Machines

Exam : Implementing Microsoft Azure Infrastructure Solutions

<Hot>Table 1.1 lists the Infoblox vnios for Azure appliance models that are supported for this release. # of vcpu Cores. TE-V Yes

[MS20533]: Implementing Microsoft Azure Infrastructure Solutions

"Charting the Course... MOC B Active Directory Services with Windows Server Course Summary

Deploying and Provisioning the Barracuda CloudGen WAF in the Classic Microsoft Azure Management Portal

ACTIVE DIRECTORY SERVICES WITH WINDOWS SERVER

Microsoft Azure for AWS Experts

Active Directory Services with Windows Server

40390: Microsoft Azure for AWS Experts

Implementing Infoblox Data Connector 2.0

1. Click on "IaaS" to advance to the Windows Azure Scenario. 2. Click to configure the "CloudNet" Virtual Network

MarkLogic Server. MarkLogic Server on Microsoft Azure Guide. MarkLogic 9 January, 2018

Implementing Microsoft Azure Infrastructure Solutions

Extend your Availability strategy to the cloud with Veeam and Microsoft Azure

If you re not using VMware vsphere Client 5.1, your screens may vary.

Getting Started with ESX Server 3i Installable Update 2 and later for ESX Server 3i version 3.5 Installable and VirtualCenter 2.5

Tableau Server on Microsoft Azure:

10969: Active Directory Services with Windows Server

EASYHA SQL SERVER V1.0

6421A: Configuring and Troubleshooting a Windows Server 2008 Network Infrastructure

Aviatrix Virtual Appliance

FusionHub. SpeedFusion Virtual Appliance. Installation Guide Version Peplink

Network Configuration Sheet

Course 10993A: Integrating On-Premises Identity Infrastructure with Microsoft Azure

ARCSERVE UDP CLOUD DIRECT DISASTER RECOVERY APPLIANCE VMWARE

Developing Microsoft Azure Solutions

DSI Optimized Backup & Deduplication for VTL Installation & User Guide

Deploying Silver Peak Velocity with Dell Compellent Remote Instant Replay. November 2012

M20742-Identity with Windows Server 2016

REVISED 6 NOVEMBER 2018 COMPONENT DESIGN: UNIFIED ACCESS GATEWAY ARCHITECTURE

Lab Guide. Barracuda NextGen Firewall F-Series Microsoft Azure - NGF0501

Azure Marketplace Getting Started Tutorial. Community Edition

Best Practices for Migrating Servers to Microsoft Azure with PlateSpin Migrate

Netwrix Auditor. Virtual Appliance and Cloud Deployment Guide. Version: /25/2017

VNS3 Configuration. Quick Launch for first time VNS3 users in Azure

SECURE Gateway with Microsoft Azure Installation Guide. Version Document Revision 1.0

[MS10992]: Integrating On-Premises Core Infrastructure with Microsoft Azure

Microsoft Azure Configuration. Azure Setup for VNS3

A specific IP with specific Ports and Protocols uses a dedicated WAN (Load Balance Policy).

Dell EMC Avamar Virtual Edition for Azure

How-to Guide: Tenable.io for Microsoft Azure. Last Updated: November 16, 2018

VELOCITY. Quick Start Guide. VMware vsphere / vsphere Hypervisor. Server Mode (Single-Interface Deployment) Before You Begin

MaaS360.com. MaaS360 On-Premises. Database Virtual Appliance Setup Guide

Extend On-Premises Windows Server 2016 Active Directory to Azure VM Complete Lab (V1.1)

FusionHub. Evaluation Guide. SpeedFusion Virtual Appliance. Version Peplink

10969B: Active Directory Services with Windows Server

Microsoft AZ-101 Exam

Deploy the Firepower Management Center Virtual On the AWS Cloud

AltaVault Cloud Integrated Storage Installation and Service Guide for Cloud Appliances

How-to Guide: Tenable Nessus for Microsoft Azure. Last Updated: April 03, 2018

Azure Marketplace. Getting Started Tutorial. Community Edition

CloudN Startup Guide. Version Copyright Aviatrix Systems, Inc. All rights reserved. Aviatrix Systems Page 0

Deployment Guide: Routing Mode with No DMZ

Deploying and Provisioning the Barracuda Application Security Control Center in the New Microsoft Azure Management Portal

Load Balancing Microsoft Remote Desktop Services. Deployment Guide v Copyright Loadbalancer.org

VRX VIRTUAL REPLICATION ACCELERATOR

ScaleArc Azure Deployment Guide

Azure for On-Premises Administrators Practice Exercises

Remote PC Guide Series - Volume 2

efolder BDR for Veeam Hyper-V Continuity Cloud Guide Setup Continuity Cloud Import Backup Copy Job Restore Your VM

ElasterStack 3.2 User Administration Guide - Advanced Zone

Load Balancing Bloxx Web Filter. Deployment Guide v Copyright Loadbalancer.org

Adding a VPN connection in Windows XP

Course 20533B: Implementing Microsoft Azure Infrastructure Solutions

Course AZ-100T01-A: Manage Subscriptions and Resources

Configuring Aviatrix Encryption

If you re not using VMware vsphere Client 4.1, your screens may vary. ITEM Example s Values Your Values

Gnostice StarDocs On-Premises API Virtual Appliance

Pexip Infinity and Amazon Web Services Deployment Guide

FUJITSU Cloud Service S5 Connecting to a Virtual Machine (VM)

If you re not using Citrix XenCenter 6.0, your screens may vary.

Docker on Windows Server 2016

EdgeConnect for Amazon Web Services (AWS)

Course Outline 20742B

Identity with Microsoft Windows Server 2016 (MS-20742)

Architecting Microsoft Azure Solutions (proposed exam 535)

Implementing Microsoft Azure Infrastructure Solutions (20533)

MOVEit Transfer on Azure Marketplace Quickstart Guide. How to deploy and use MOVEit Transfer from Microsoft Azure Marketplace

WA2342 NoSQL Systems Comparison. Lab Server VM Setup Guide. Web Age Solutions Inc. Copyright Web Age Solutions Inc. 1

Course 10969: Active Directory services with Windows Server

If you re not using Microsoft Hyper-V 2012, your screens may vary.

VRX VIRTUAL REPLICATION ACCELERATOR

Transcription:

VPN Solutions for Zerto Virtual Replication to Azure SoftEther Installation Guide VERSION 1.0 JULY 2017

Table of Contents 1. Overview... 2 1.1 Use Cases... 2 2. Proofs of Concept and Lab Usage... 2 2.1 General Requirements... 2 3. SoftEther VPN... 2 3.1 SoftEther Requirements... 2 3.1.1 Deploy a simple network in Azure with Azure Quickstart Templates... 3 3.2 Install SoftEther... 4 3.2.1 SoftEther Server Installation Steps:... 4 3.2.2 SoftEther Client Installation Steps... 11 4. References... 16 PAGE 1 OF 17

1. Overview This document provides an outline of how to use Zerto Virtual Replication (ZVR) with the open source VPN product SoftEther. This guide includes step-by-step instructions on how to configure an example non-production SoftEther VPN solution to Azure. The configuration steps are intended for virtual machine administrators that want to do a quick VPN configuration for a Proof of Concept (POC) or Lab without requiring significant corporate network changes with dedicated networking resources. 1.1 Use Cases The VPN solution included in this guide deploys quickly and establishes reliable connections for testing and lab usage. For production use cases, Zerto recommends using a commercial VPN product. The target use cases covered in this manual include: Proofs of Concept or Labs Quickly establish a VPN for validation testing. Lab Usage Build ZVR to Azure lab without making any network changes. 2. Proofs of Concept and Lab Usage For short term functionality testing of ZVR to Azure such as a proof of concept, open source VPNs are a perfect solution. They provide robust performance without having to modify or purchase commercial VPN licenses for limited use, or limited duration needs. 2.1 General Requirements The SoftEther VPN solution highlighted in this guide requires the following: 1. An Azure subscription - Microsoft offers a free Azure trial subscription that provides everything necessary to do a POC or short-term lab. 2. A server that is running in the on-premises site for testing VPN. 3. Available IP addresses for networking components. The links to the Azure and other relevant content are in the References section of this guide. 3. SoftEther VPN SoftEther is a powerful open source VPN that was created and maintained by the University of Tsukuba, Japan. More information on the history of the SoftEther VPN project is located here: https://www.softether.org/9-about. 3.1 SoftEther Requirements PAGE 2 OF 17

In Azure, you need the common infrastructure elements in place just like what you would find in an enterprise data center. 1. Resource Group in Azure 2. Vnet 3. Subnet 4. Network Security Group 3.1.1 Deploy a simple network in Azure with Azure Quickstart Templates If you do not have the Azure elements listed above already in place, you can use an Azure Quickstart Template to get started. The Multi tier VNet with NSGs and DMZ Quickstart Template is here: https://azure.microsoft.com/enus/resources/templates/201-nsg-dmz-in-vnet/ This template will auto deploy the network, subnets and security groups simply by clicking Deploy to Azure. While it automates the configuration of the networks, you are still able to select the IP address scheme and have custom names for the components. Figure 1: Azure Quickstart Template PAGE 3 OF 17

3.2 Install SoftEther The SoftEther installation consists of two parts: 1. The SoftEther server, running on a Windows or Linux VM. 2. The SoftEther client, running on a Windows or Linux VM. In Azure, you can use the Zerto Cloud Appliance VM. Figure 2: SoftEther Deployment The SoftEther server and client installation steps are straightforward, and you can complete them in about thirty minutes. You need a Windows or Linux server at each site. The instructions in this guide use Windows servers. Place the SoftEther server at the production site in a subnet that is that is accessible to the virtual machines in the Zerto virtual protection groups. Install the SoftEther client software in an Azure Windows VM and add a static IP address from the production subnet to the virtual network VPN adapter in the SoftEther client. If you plan on deploying the Zerto Cloud Appliance (ZCA), you can use the Zerto Azure Marketplace VM and install the SoftEther client on the ZCA. 3.2.1 SoftEther Server Installation Steps: The SoftEther server runs in the on-site production data center and accepts SoftEther client connections are running in Azure or any other location. The SoftEther server does not require a public IP address because it uses a dynamic DNS server that runs on Azure. The dynamic Azure DNS service configuration is automated and part of the VPN server installation. Note: Make sure to enable promiscuous mode on the virtual switch of the SoftEther VPN VM server in the production site so the server can build the local subnet IP table. 1. Download the latest RTM version of SoftEther server located here: http://www.softetherdownload.com/en.aspx?product=softether In this document, SoftEther version 4.02 RTM version, build 9608 was used and installed on a Windows 2012 R2 Server. PAGE 4 OF 17

2. Launch the installation wizard. Click Next. 3. Choose SoftEther VPN Server and finish the installation wizard. PAGE 5 OF 17

4. Double-click on Localhost VPN Server and create a password. 5. Choose Remote Access VPN Server PAGE 6 OF 17

6. Click Yes to start the VPN server 7. Name the VPN virtual hub (e.g. MyLabVPN) 8. In the Modify the Setting section, add a unique DNS name (e.g. mylabvpn1.softether.net) and click Set to Above Hostname. PAGE 7 OF 17

9. SoftEther uses a dynamic DNS service on Azure, so a dedicated IP is not required. 10. Once the DNS is set, click Exit. 11. No need for IPSec, click OK. 12. Enable VPN Server and click OK. PAGE 8 OF 17

13. Create at least one user in Step 1. Create a User to Accept VPN Connection and set the password. 14. Click OK. 15. Skip Step 2 of the 3 VPN Easy Setup Tasks steps. 16. Create local bridge on Server in Step 3: Set Local Bridge. PAGE 9 OF 17

17. Set local bridging to the NIC in the drop-down box. 18. Answer Yes when asked after clicking Close. That completes the SoftEther VPN Server. It should be online and available. PAGE 10 OF 17

3.2.2 SoftEther Client Installation Steps The SoftEther client is installed and configured on the VM in Azure to connect to the SoftEther VPN installed in the previous steps. 1. From the Azure Marketplace search for Zerto. 2. The search result shows the Zerto Virtual Replication Azure Marketplace VM. 3. Deploy the Zerto Virtual Replication Marketplace VM. 4. Install the Marketplace VM and download the SoftEther VPN client located here: http://www.softetherdownload.com/en.aspx?product=softether 5. Install the SoftEther client. 6. Choose the SoftEther VPN Client and finish the wizard. PAGE 11 OF 17

7. Open the SoftEther Client from the desktop shortcut. 8. Add a VPN Connection. 9. Select Yes to install the VPN network adapter. Keep the name VPN for the adapter and click OK. 10. Once the previous configuration step completes, choose the Add VPN Connection. 11. Name the VPN connection in the settings name and add the DNS name of the VPN in the Destination VPN Server section. Click the virtual hub name drop-down box and wait for the name of the VPN server you created in the VPN Server section to show as a selection. PAGE 12 OF 17

12. Add in the user name and password into the User Authentication Settings section. 13. Click OK to complete the New VPN Connection Setting Properties section. 14. Connect to VPN server using the connection you just created. (e.g. ZertoVPN at mylabvpn1.softether.net) PAGE 13 OF 17

15. Using the username and password that was set up in the SoftEther VPN Server configuration step, log into the VPN Server. 16. The VPN connection attempts to get an IP address via DHCP. If DHCP is not in the subnet of the VPN server, you can change to a static IP address. PAGE 14 OF 17

17. After installation, change VPN network interface IP address to an available IP address in the SoftEther VPN Server subnet. A default gateway is not necessary since the VPN IP is local to the VPN server subnet. The SoftEther server forwards IP traffic to and from the server subnet. 18. The VPN client and server should have established a connection at this point. 19. The VPN client can be set up to automatically connect when the virtual machine boots by right-clicking on the VPN connection (e.g. ZertoVPN) and selecting the Set as Startup Connection option. PAGE 15 OF 17

4. References Azure Quickstart Templates - https://azure.microsoft.com/en-us/resources/templates/ SoftEther VPN - https://www.softether.org/ Zerto Virtual Replication - https://www.zerto.com/ Zerto Cloud Appliance in Azure Marketplace - https://azuremarketplace.microsoft.com/enus/marketplace/apps/zerto.zerto-cloud-appliance-50 PAGE 16 OF 17

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback