Securing Data in Transit with the PCF IPsec Add-On
Page last updated:
This guide describes the Pivotal Cloud Foundry (PCF) IPsec add-on. The topics included in this guide include installation and configuration, troubleshooting, and credential rotation. Your organization may require IPsec if you transmit sensitive data.
The IPsec add-on for PCF provides security to the network layer of the OSI model with a strongSwan implementation of IPsec. The IPsec add-on provides a strongSwan job to each BOSH-deployed virtual machine (VM).
IPsec encrypts IP data flow between hosts, between security gateways, and between security gateways and hosts. The PCF IPsec add-on secures network traffic within a Cloud Foundry deployment and provides internal system protection if a malicious actor breaches your firewall.
The following table provides version and version-support information about MySQL for PCF.
|Release date||August 24, 2017|
|Compatible Ops Manager version(s)||v1.8.x, v1.9.x, v1.10.x, and v1.11.x|
|Compatible Elastic Runtime version(s)||v1.8.x, v1.9.x, v1.10.x, and v1.11.x|
|IaaS support||vSphere, GCP, AWS, Azure, and Openstack|
Refer to the following topics for more information about the IPsec add-on: