Bastion
^^ Bastion host is in the public subnet, since it needs a public IP, to be an SSH entry point from internet to then tunnel the traffic to the private IP of your instance in private subnet.
^^^ You must use bastion as jumphost to access your EC2 instances in private subnet (since these instances don't have a public IP), but you can also use the bastion host as jumphost for instances in your public subnet too (as a good security measure).
Bastion
^^ Bastion host is in the public subnet, since it needs a public IP, to be an SSH entry point from internet to then tunnel the traffic to the private IP of your instance in private subnet.
^^^ You must use bastion as jumphost to access your EC2 instances in private subnet (since these instances don't have a public IP), but you can also use the bastion host as jumphost for instances in your public subnet too (as a good security measure).
status | not learned | measured difficulty | 37% [default] | last interval [days] | |||
---|---|---|---|---|---|---|---|
repetition number in this series | 0 | memorised on | scheduled repetition | ||||
scheduled repetition interval | last repetition or drill |