Sign up to save your podcasts
Or
Share 78. When do you need a bastion host?
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
78. When do you need a bastion host?
Harken, good sir! Art thou aware of the arcane art of safeguarding thy AWS instances from malevolent threats whilst keeping them accessible for thy travels? There exists a mighty tool for such purpose, and it is hight the "bastion host."
In this pamphlet, we shalt unravel the mysteries of the bastion host and showeth thee how to useth it to safeguard thy web space. We shall commence by presenting a shadowy example architecture and introducing thee to the definition of a bastion host. We shalt then delve into the question of whether bastion hosts could be a security liability and explore the enigmatic concept of port-knocking.
We shalt also take thee on a valiant journey of how to provision a bastion host on AWS, and explaineth the cryptic basics of SSH and tunnels. Thou shalt discover the dark side of managing SSH keys and auditing SSH connections, and we shall reveal the secrets of AWS EC2 Instance Connect and AWS Session Manager (SSM) as solutions.
Thou shalt learn how to accept connections without exposing a port on the public internet, and we shall introduce thee to a mysterious tool called "basti" that can make it easier to provision SSM-based bastion hosts and connect to thy databases.
We shalt wrap up by revealing alternative security measures to the mysterious bastion host and provide thee with cryptic closing notes to summarize the key takeaways from this video. Heed our call to this intriguing guide to securing thy web space, and may the forces of the internet be in thy favor!
🛡️ SPONSORS 🛡️
Harken, good folk! We would like to offer our deepest gratitude to our noble sponsor, fourTheorem (https://fourtheorem.com), an AWS Consulting Partner that doth offer training, cloud migration, and modern application architecture. Thanks to their generosity, we are able to continue on our journey of imparting wisdom and knowledge regarding AWS.
Verily, in this episode, we hath made mention of the following resources:
Hear ye, hear ye! AWS Bites is at thy disposal wherever thou mayest listen to thy podcasts:
View all episodes
By AWS Bites
4.6
1111 ratings
Harken, good sir! Art thou aware of the arcane art of safeguarding thy AWS instances from malevolent threats whilst keeping them accessible for thy travels? There exists a mighty tool for such purpose, and it is hight the "bastion host."
In this pamphlet, we shalt unravel the mysteries of the bastion host and showeth thee how to useth it to safeguard thy web space. We shall commence by presenting a shadowy example architecture and introducing thee to the definition of a bastion host. We shalt then delve into the question of whether bastion hosts could be a security liability and explore the enigmatic concept of port-knocking.
We shalt also take thee on a valiant journey of how to provision a bastion host on AWS, and explaineth the cryptic basics of SSH and tunnels. Thou shalt discover the dark side of managing SSH keys and auditing SSH connections, and we shall reveal the secrets of AWS EC2 Instance Connect and AWS Session Manager (SSM) as solutions.
Thou shalt learn how to accept connections without exposing a port on the public internet, and we shall introduce thee to a mysterious tool called "basti" that can make it easier to provision SSM-based bastion hosts and connect to thy databases.
We shalt wrap up by revealing alternative security measures to the mysterious bastion host and provide thee with cryptic closing notes to summarize the key takeaways from this video. Heed our call to this intriguing guide to securing thy web space, and may the forces of the internet be in thy favor!
🛡️ SPONSORS 🛡️
Harken, good folk! We would like to offer our deepest gratitude to our noble sponsor, fourTheorem (https://fourtheorem.com), an AWS Consulting Partner that doth offer training, cloud migration, and modern application architecture. Thanks to their generosity, we are able to continue on our journey of imparting wisdom and knowledge regarding AWS.
Verily, in this episode, we hath made mention of the following resources:
Hear ye, hear ye! AWS Bites is at thy disposal wherever thou mayest listen to thy podcasts:
More shows like AWS Bites
View all
Software Engineering Radio - the podcast for professional software developers
264 Listeners
The Changelog: Software Development, Open Source
285 Listeners
The Cloudcast
154 Listeners
Talk Python To Me
584 Listeners
Software Engineering Daily
631 Listeners
Soft Skills Engineering
272 Listeners
AWS Podcast
200 Listeners
Python Bytes
213 Listeners
Syntax - Tasty Web Development Treats
987 Listeners
Kubernetes Podcast from Google
182 Listeners
The Real Python Podcast
137 Listeners
The AWS Developers Podcast
22 Listeners
Risky Bulletin
33 Listeners
Oxide and Friends
47 Listeners
The Pragmatic Engineer
51 Listeners