Heroku Enterprise
  • Updated on 17 May 2020
  • 1 minute to read
  • Contributors
  • Print
  • Dark
    Light

Heroku Enterprise

  • Print
  • Dark
    Light

This article describes how Heroku Private Spaces can configure a connection to Perimeter 81 using IPSec. This lets you connect to hosts on your private networks and vice versa. Connections are established over the public internet, but all traffic is encrypted using IPSec.

Setting up the VPN connection

After you obtain your private Perimeter 81 gateway, set up a VPN gateway for the Private Space with the following command:

* Shell 
Copy ```
heroku spaces:vpn:connect \
     --name   perimeter81 \   --ip   PUBLIC_IP_OF_YOUR_VPN_GATEWAY \   --cidrs     '10.255.248.0/21'   \   --space   SPACE  

Setting up the gateway takes a few minutes. Use the Wait command to wait for the gateway to be ready:


  * Shell 
 
Copy ```
heroku   spaces  :vpn  :wait   --space    SPACE   perimeter81  

When the gateway is ready, get the configuration with:


  * Shell 
 
Copy ```
heroku   spaces  :vpn  :info   --space    SPACE   perimeter81  

This returns a table containing all the details you need to configure Perimeter 81. Here is an example response:

  * Text 
 
Copy ```
heroku spaces:vpn:info --space SPACE perimeter81
=== SPACE VPNs
VPN Tunnel  Customer Gateway  VPN Gateway    Pre-shared Key  Routable Subnets  IKE Version
──────────  ────────────────  ─────────────  ──────────────  ────────────────  ───────────
Tunnel 1 52.91.173.226 34.203.187.158 abcdef12345     10.0.0.0 /16 1 Tunnel 2 52.91.173.226 34.227.70.143 123456abcdef    10.0.0.0 /16 1 

Please contact us at support@perimeter81.com, to coordinate and share the configuration above securely.