Bastion
A bastion is the main host on any given network for external users to log into. From the bastion, system administrators access other hosts on the same internal subnets.
While a bastion may not be the only host on a network with a public IP, it tends to be the only one SSH enabled. (Others public nodes are typically access routes to web services).

Map of bastion hosts
eqiad
codfw
esams
ulsfo
eqsin
drmrs
See also
experimental Bash script for local users to detect the correct bastion and auto-fix config: https://people.wikimedia.org/~dzahn/bastion.sh.txt
Last edited on 14 October 2019, at 08:54
Wikitech
Content is available under CC BY-SA 3.0 unless otherwise noted.
Privacy policy
Terms of Use
Desktop
 Home Random Log in  Settings  Donate  About Wikitech  Disclaimers
WatchEdit