search

Bastion Hosts

  • A bastion host is a server whose purpose is to provide access to a private network from an external network, such as the Internet.

  • A Linux bastion host in each public subnet with an Elastic IP address to allow inbound SSH access to EC2 instances in public and private subnets.

  • After you set up your bastion hosts, you can access the other instances in your VPC through SSH connections on Linux.

  • Bastion hosts are also configured with security groups to provide fine-grained ingress control.

  • Linux bastion hosts are deployed in two Availability Zones to support immediate access across the VPC. You can configure the number of bastion host instances at launch.

PreviousCentralized Logging ArchitectureNextSite-to-Site VPN

Last updated