Rodrigo Fernandes

Posted on May 19, 2023

Bastion Host

#aws #devops #security #cloud

Anotações sobre o Bastion Host para ajudar na preparação das certificações AWS.

Até o momento as anotações são para as certificações abaixo:

Link oficial

Anotações gerais

Instância sempre na Subnet Publica

SSH Agent Forwarding

Documentação oficial

Copiar a public key para as instâncias que serão acessadas

Step 1: Create Public/Private Key in Remote Client EC2

ssh-keygen

Step 2: Setup Authentication

Copy the contents of public key form remote-client to the

~/.ssh/authorized_keys file of both Bastion and Private EC2.

Step 3: Use SSH Agent Forwarding

Run the following commands on the remote-client EC2 instance

Step 4: Test the Setup

From remote-client EC2, run the following command:

ssh -A [BASTION-EC2-IP]

Once you are logged into Bastion, try to connect to Private EC2

ssh [IP-OF-PRIVATE-EC2]

How to Record SSH Sessions Established Through a Bastion Host

Documentação oficial

Referências

Your AI Code Assistant

Ask anything about your entire project, code and get answers and even architecture diagrams. Built to handle large projects, Amazon Q Developer works alongside you from idea to production code.

Start free in your IDE

Top comments (0)

AWS Global Infrastructure Explained for Newcomers

Megha Shivhare - Dec 15 '24

10 reasons why you should choose Cerbos as your application's authorization provider

Terrence Aluda - Dec 15 '24

Test your Docker knowledge

Lukas Mauser - Dec 15 '24

EKS Auto Mode Unlocked for Existing Clusters with Terraform

Jatin Mehrotra - Dec 13 '24

DEV Community