PCF IPsec Add-On v1.7

Securing Data in Transit with the PCF IPsec Add-On

Page last updated:

This guide describes the Pivotal Cloud Foundry (PCF) IPsec add-on. The topics included in this guide include installation and configuration, troubleshooting, and credential rotation. Your organization may require IPsec if you transmit sensitive data.


The IPsec add-on for PCF provides security to the network layer of the OSI model with a strongSwan implementation of IPsec. The IPsec add-on provides a strongSwan job to each BOSH-deployed virtual machine (VM).

IPsec encrypts IP data flow between hosts, between security gateways, and between security gateways and hosts. The PCF IPsec add-on secures network traffic within a Cloud Foundry deployment and provides internal system protection if a malicious actor breaches your firewall.

Product Snapshot

The following table provides version and version-support information about MySQL for PCF.

Element Details
Version v1.7.1
Release date August 24, 2017
Compatible Ops Manager version(s) v1.8.x, v1.9.x, v1.10.x, and v1.11.x
Compatible Elastic Runtime version(s) v1.8.x, v1.9.x, v1.10.x, and v1.11.x
IaaS support vSphere, GCP, AWS, Azure, and Openstack

PCF IPsec Implementation Details

Refer to the following topics for more information about the IPsec add-on:

Create a pull request or raise an issue on the source for this page in GitHub