Start preparing for your Next Exam | Use coupon – TOGETHER | Avail 30% discount

What is a Bastion Host

  1. Home
  3. AWS Certified SysOps Administrator – Associate (SOA-C01)
  5. What is a Bastion Host
  • A structure for fortification for network security and protect things behind it
  • It is launched in Public subnets
  • Benefits of a Bastion
    • Protecting against port scanning.
    • Hardening one place only. Zero day exploits.
    • Prevent rogue SSH access by an additional layer.
    • Slow down attackers.
  • Acts as primary access point from the Internet
  • Acts as a proxy or gateway between you and your instances
  • It is deployed in Public subnet
  • Enables login to instances in Private subnet securely without storing private keys on Bastion host
  • Allow SSH/RDP access from trusted IPs or IP ranges
  • Deploy a Bastion host within each Availability Zone for HA

Menu