Bastion Host | Jump Server

This content originally appeared on DEV Community and was authored by Surya shankar

What is a Bastion Host ?

• A bastion host is a server whose purpose is to provide access to a private network from an external network, such as the Internet. Because of its exposure to potential attack, a bastion host must minimize the chances of penetration.

Why to use ?

• If we want to SSH into EC2 instance on the private subnet from our home/office (or using a development machine), currently we can’t. Our instance has no public IP, it is in a Private Subnet (no direct route from the internet). This is where we can use a Bastion Server or Jump server.

The purpose of a bastion host

• To restrict access to a private network from an external network.

Now lets us deploy a window server [disable public ip]

• Search for Ec2
• Launch instance
• choose T2micro[free tier]

• Disable public ip. [as we never provide a public ip to our database]

• add storage

• add tags

• Name the instance as Database or anything you want.

• next configure security group

• select all traffic and anywhere [generally this is not a best industry practice , we only allow custom ips]

• now download the key pair and launch

• decrypt the password

• download remote desktop and paste private ip ..

• As we see , its not allowing because to ssh into a instance need a public ip.

Now lets us deploy a window server/Jump server with in same vpc [enable public ip]

• launch instance

• select T2micro

• enable public ip

• name it as jump server

• select all traffic anywhere and launch .

• launch instance
• view instance
• Check box it [jump server] and try to connect .

• here we successfully connect to our server.

• now we can access to our database within this server only,here this server acts as a bastion host.

• click Window+r

• type mstsc

• put private ip of database server and connect

here we successfully connected to our database.

This content originally appeared on DEV Community and was authored by Surya shankar

Print Share Comment Cite Upload Translate Updates

APA

Surya shankar | Sciencx (2022-01-25T07:46:48+00:00) Bastion Host | Jump Server. Retrieved from https://www.scien.cx/2022/01/25/bastion-host-jump-server/

MLA

" » Bastion Host | Jump Server." Surya shankar | Sciencx - Tuesday January 25, 2022, https://www.scien.cx/2022/01/25/bastion-host-jump-server/

HARVARD

Surya shankar | Sciencx Tuesday January 25, 2022 » Bastion Host | Jump Server., viewed ,<https://www.scien.cx/2022/01/25/bastion-host-jump-server/>

VANCOUVER

Surya shankar | Sciencx - » Bastion Host | Jump Server. [Internet]. [Accessed ]. Available from: https://www.scien.cx/2022/01/25/bastion-host-jump-server/

CHICAGO

" » Bastion Host | Jump Server." Surya shankar | Sciencx - Accessed . https://www.scien.cx/2022/01/25/bastion-host-jump-server/

IEEE

" » Bastion Host | Jump Server." Surya shankar | Sciencx [Online]. Available: https://www.scien.cx/2022/01/25/bastion-host-jump-server/. [Accessed: ]

rf:citation

» Bastion Host | Jump Server | Surya shankar | Sciencx | https://www.scien.cx/2022/01/25/bastion-host-jump-server/ |

Please log in to upload a file.

There are no updates yet.
Click the Upload button above to add an update.

You must be logged in to translate posts. Please log in or register.