AWS - Bastion Host

AWS Bastion Host Block Diagram

Internet Gateway & Route Table setup

Bastion host is basically a host available on internet (public) which works as the authentication mechanism which later allows the access to the machines & services running on the private subnet is what we called the bastion host.

To create the bastion host configuration we will have to follow the following steps :

---

Steps to reproduce :

1. Create a VPC named "your-vpc"

2. Create the Internet Gateway & attach it to the VPC Just created

3. Create two subnets (Public & Private)

4. Make the Routing table & attach only "PUBLIC" subnet as the subnet association and add the route to "Internal Gatway" to destination "0.0.0.0/0" to access internet on the public subnet

5. Now create the Public EC2 instance with associate VPC & enable the public IP to enable ssh access to the instance

6. Now create the Private EC2 instance with associate VPC & disable the public IP to enable ssh only from the Public Instance just created.

7. Check the connectivity of the bastion host & check the subnets logs

---

Now we have sucessfully configured the bastion host in the AWS - VPC