Usando AWS re:Post, accetti AWS re:Post Termini di utilizzo
AWS re:Postre:Post

How to setup bastion hosts for accessing EC2 instances that are in different VPCs

0

Hello,

Currently, we have setup which uses different bastion hosts for EC2 in different VPCs.

Is it possible to use only one bastion host to access all EC2 hosts which are in different VPCs by using VPC peering?

Is it recommended? Did any one try it?

Thanks

Argomenti
Networking e distribuzione di contenutiComputazionali
Tag
Amazon VPCAmazon EC2
Lingua
English
Maan
posta un anno fa707 visualizzazioni
2 Risposte
1

Hi, you can use a single bastion host to access all your EC2 instances anywhere they reside as long as there is a connectivity between the bastion host and the instances that you're trying to reach. There are several ways that you can use to connect VPCs together such as VPC-Peering, Transit Gateway, site-to-site VPNs, etc..

I would recommend using AWS System Manager as a way to access your EC2 instances no matter where they reside instead of using a bastion host.

You can read a bit about it here:

https://docs.aws.amazon.com/systems-manager/latest/userguide/session-manager.html

profile pictureAWS
mml
con risposta un anno fa
profile pictureAWS
ESPERTO
Tushar_J
verificato un anno fa
  • Maan
    un anno fa

    Thanks for the answer,

    Does System Manager (Session Manager) support RDS access, or only SSH access to EC2 instances?

0

if you just need CLI access then better to use cloudshell than bastion hosts.

But yes, VPC peering / TGW can be used to access other VPC from a single bastion host as long connectivity/ACL permits.

https://aws.amazon.com/blogs/aws/aws-cloudshell-command-line-access-to-aws-resources/

Muhammad
con risposta un anno fa

Accesso non effettuato. Accedi per postare una risposta.

Una buona risposta soddisfa chiaramente la domanda, fornisce un feedback costruttivo e incoraggia la crescita professionale del richiedente.

Linee guida per rispondere alle domande

Contenuto pertinente