Configuring a Site-to-Site IPSec Tunnel to Heroku Enterprise

Follow

Heroku Private Spaces can configure a connection to Perimeter 81 using IPSec. This lets you connect to hosts on your private networks and vice versa. Connections are established over the public Internet, but all traffic is encrypted using IPSec.

 

Setting up the VPN Connection

After you obtain your private Perimeter 81 gateway, set up a VPN gateway for the Private Space with the following command:

Copy
heroku spaces:vpn:connect \
    --name perimeter81 \
    --ip PUBLIC_IP_OF_YOUR_VPN_GATEWAY \
    --cidrs '10.255.248.0/21' \
    --space SPACE

Setting up the gateway takes a few minutes. Use the wait command to wait for the gateway to be ready:

Copy
heroku spaces:vpn:wait --space SPACE perimeter81

When the gateway is ready, get the configuration with:

Copy
heroku spaces:vpn:info --space SPACE perimeter81

This returns a table containing all the details you need to configure Perimeter 81. Here is an example response:

Copy
heroku spaces:vpn:info --space SPACE perimeter81
=== SPACE VPNs
VPN Tunnel  Customer Gateway  VPN Gateway    Pre-shared Key  Routable Subnets  IKE Version
──────────  ────────────────  ─────────────  ──────────────  ────────────────  ───────────
Tunnel 1    52.91.173.226     34.203.187.158 abcdef12345     10.0.0.0/16       1
Tunnel 2    52.91.173.226     34.227.70.143  123456abcdef    10.0.0.0/16       1

Then please contact us at support@perimeter81.com, to coordinate and share the configuration above securely.

0 out of 0 found this helpful

Comments

0 comments

Please sign in to leave a comment.