VPN Prerequisites

The VPN feature supports connectivity to the following VPNs:

• Cisco AnyConnect SSL VPN (using Cisco AnyConnect protocol)
• Juniper SSL VPN (using Juniper Network Connect protocol)

The following limitations apply:

• Currently only IPv4 connections are supported.
• If the VPN server exposes subnets that overlap the Docker bridge network CIDR (172.17.0.0/22), we block the traffic to such networks. The traffic to other exposed networks is not be affected. When we detect the network overlaps, we log a message to the app log with severity WARNING.
• When you enable VPN connectivity for an app, every container for that app starts a VPN client and attempts to connect to the remote VPN network. If connected, only that specific container has access to the on-premises resources. Every container establishes a new VPN connection that is independent of the VPN connections established by other containers and completely isolated.