AWS - Bastion Host

Bastion host is basically a host available on internet (public) which works as the authentication mechanism which later allows the access to the machines & services running on the private subnet is what we called the bastion host.

To create the bastion host configuration we will have to follow the following steps :

Steps to reproduce :

Create a VPC named "your-vpc"
Create the Internet Gateway & attach it to the VPC Just created
Create two subnets (Public & Private)
Make the Routing table & attach only "PUBLIC" subnet as the subnet association and add the route to "Internal Gatway" to destination "0.0.0.0/0" to access internet on the public subnet
Now create the Public EC2 instance with associate VPC & enable the public IP to enable ssh access to the instance
Now create the Private EC2 instance with associate VPC & disable the public IP to enable ssh only from the Public Instance just created.
Check the connectivity of the bastion host & check the subnets logs

Now we have sucessfully configured the bastion host in the AWS - VPC

PreviousAWS - VPC NextAWS Application Load Balancer

Last updated 4 months ago