- The following exercise would give the participant the skills to setup a Classic/Traditional Bastion Host Setup at the edge of our Network Perimeter (Though this method within AWS, specially with more robust setup is not recommended or used anymore)
- VPC (1 Private, 1 Public Subnet)
- EC2 (1 in Public Subnet, 2 Private Subnet)
- Security (Use Security Groups to restrict Incoming and Outgoing Traffic)
- USe SSH Keys
- Setup the proper SSH Configurations at the Client Side
- SSH Commands from the Client simple like
SSH BastionorSSH Worker1
- SSH Commands from the Client simple like
- Connecting EC2 using Key Pairs link
- Possible SSH Config At the Client Side
Host Bastion
Hostname <Public IP of Bastion>
Username ec2-user
IdentityFile ~/.ssh/BASTION.pem
Host Worker1
Hostname <Private IP of Worker1>
Username ec2-user
IdentityFile ~/.ssh/WORKER.pem
ProxyJump Bastion
Host Worker2
Hostname <Private IP of Worker2>
Username ec2-user
IdentityFile ~/.ssh/WORKER.pem
ProxyJump Bastion