You are browsing a read-only backup copy of Wikitech. The live site can be found at wikitech.wikimedia.org

Difference between revisions of "Bastion"

From Wikitech-static
Jump to navigation Jump to search
imported>Dzahn
(→‎See also: * experimental Bash script for local users to detect the correct bastion and auto-fix config: https://people.wikimedia.org/~dzahn/bastion.sh.txt)
imported>Neil P. Quinn-WMF
(Remove redirect from see also section)
 
Line 7: Line 7:
== See also ==
== See also ==
* '''[[Production shell access#SSH configuration]]'''
* '''[[Production shell access#SSH configuration]]'''
* [[Server access responsibilities]]
* [[:Category:Server usage:Bastion|List of Bastion hosts in Wikimedia clusters]]
* [[:Category:Server usage:Bastion|List of Bastion hosts in Wikimedia clusters]]
* [[:en:Bastion host|Read about "Bastion host" on Wikipedia]]
* [[:en:Bastion host|Read about "Bastion host" on Wikipedia]]


* experimental Bash script for local users to detect the correct bastion and auto-fix config:  https://people.wikimedia.org/~dzahn/bastion.sh.txt
* experimental Bash script for local users to detect the correct bastion and auto-fix config:  https://people.wikimedia.org/~dzahn/bastion.sh.txt

Latest revision as of 08:54, 14 October 2019

A bastion is the main host on any given network for external users to log into. From the bastion, system administrators access other hosts on the same internal subnets.

While a bastion may not be the only host on a network with a public IP, it tends to be the only one SSH enabled. (Others public nodes are typically access routes to web services).

Map of bastion hosts

See also