Contents x
    Heroku Enterprise
    • 29 Apr 2024
    • 1 Minute to read
    • Contributors
      Contents

      Heroku Enterprise

      • Updated on 29 Apr 2024
      • 1 Minute to read
      • Contributors
        Article summary

        Introduction

        This guide will walk you through the process of establishing a Site-to-Site VPN tunnel between your Harmony SASE network and your Heroku Enterprise environment.

        Breakdown of topics

        1. Pre-requisites
        2. Configuration Steps
        3. Verifying the Setup
        4. Troubleshooting
        5. Support Contacts

        Pre-requisites

        To successfully follow this guide, you should have:

        1. An active Harmony SASE account and network.
        2. The Harmony SASE app is installed on your devices.
        3. An active Heroku Enterprise account with admin permissions.

        Configuration Steps

        After you obtain your private Harmony SASE gateway, set up a VPN gateway for the Private Space with the following command:

        * Shell 

        Copy ```
heroku spaces:vpn:connect \
     --name   perimeter81 \   --ip   PUBLIC_IP_OF_YOUR_VPN_GATEWAY \   --cidrs     '10.255.248.0/21'   \   --space   SPACE

        Setting up the gateway takes a few minutes. Use the Wait command to wait for the gateway to be ready:

        
  * Shell 
 
Copy ```
heroku   spaces  :vpn  :wait   --space    SPACE   perimeter81

        When the gateway is ready, get the configuration with:

        
  * Shell 
 
Copy ```
heroku   spaces  :vpn  :info   --space    SPACE   perimeter81

        This returns a table containing all the details you need to configure Harmony SASE. Here is an example response:

          * Text 
 
Copy ```
heroku spaces:vpn:info --space SPACE perimeter81
=== SPACE VPNs
VPN Tunnel  Customer Gateway  VPN Gateway    Pre-shared Key  Routable Subnets  IKE Version
──────────  ────────────────  ─────────────  ──────────────  ────────────────  ───────────
Tunnel 1 52.91.173.226 34.203.187.158 abcdef12345     10.0.0.0 /16 1 Tunnel 2 52.91.173.226 34.227.70.143 123456abcdef    10.0.0.0 /16 1


        Verifying the Setup

        After following the above steps, your tunnel should be active.
        To verify, go to your Harmony SASE dashboard, locate the tunnel you just created, and check the tunnel status.
        It should indicate that the tunnel is "Up", signifying a successful connection.
        Next, connect to your network using the Harmony SASE agent and attempt to access one of the resources in your environment.

        Troubleshooting

        If you encounter issues during or after the setup, try reviewing your settings to ensure everything matches the instructions. In particular, check the IP addresses and other details you entered during setup. If issues persist, please consult our dedicated support.

        Support Contacts

        If you have any difficulties or questions, don't hesitate to contact Harmony SASE's support team. We offer 24/7 chat support on our website at Perimeter81.com, or you can email us at sase-support@checkpoint.com. We're here to assist you and ensure your VPN tunnel setup is a success

        Was this article helpful?
        What's Next