we are configuring some backup repositories on S3 AWS Australia (Sydney).
For security reasons, we are allowed to connect directly only to Australia Sydney IPs (ap-southeast-2).
52.95.128.0/21
16.12.74.0/24
3.5.164.0/22
3.5.168.0/23
3.26.88.0/28
3.26.88.16/28
These addresses have been obtained using the following scripts:
PowerSheel
Code: Select all
Invoke-RestMethod -Uri 'https://ip-ranges.amazonaws.com/ip-ranges.json' | Select-Object -ExpandProperty prefixes | Where-Object { $_.region -eq '[b]ap-southeast-2[/b]' -and $_.service -eq '[b]S3[/b]' } | Select-Object -ExpandProperty ip_prefixCode: Select all
curl -s https://ip-ranges.amazonaws.com/ip-ranges.json | jq -r '.prefixes[] | select(.region == "[b]ap-southeast-2[/b]" and .service == "[b]S3[/b]") | .ip_prefix'From Veeam console, during the backup repo setup process ( Backup Infrastructure > Backup Repositories > Add Backup Repositories > Object Storage > Hyperscalers > Amazon S3 > Amazon S3),
the only selectable regions are: Global, GovCloud (US) and China.
So the first connection, selecting Global during the setup, goes to US. And the attempt fails due to our network restrictions.
Is there a way to force directly, during the repo configuration and after, the connection to ap-southeast-2 without having to pass through US?