diff --git a/en_US/cloud-platform/cloud-platform.what.is.ssh.jump.server.md b/en_US/cloud-platform/cloud-platform.what.is.ssh.jump.server.md new file mode 100644 index 00000000..10a5288c --- /dev/null +++ b/en_US/cloud-platform/cloud-platform.what.is.ssh.jump.server.md @@ -0,0 +1,27 @@ +# What is SSH jump server + +It's common that you have a protected Linux/BSD server that isn’t publicly +accessible. Typically, you may have what is commonly referred to as a +*__jump server__* or *__bastion server__* which is accessible from a public +network (sometimes this jump server would be in a DMZ, and also Linux/BSD), +you connect to this jump server first, then connect to the protected server +from jump server. + +Sample setup: + +``` ++--------+ +-------------+ +------------------+ +| Laptop | <---> | Jump server | <--> | Protected server | ++--------+ +-------------+ +------------------+ +``` + +You can connect to the protected server through jump server via ssh with +command like below: + +``` +ssh -v -J user1@jump-server user2@protected-server +``` + +## References + +- [SSH manual page](https://man.openbsd.org/ssh#J) diff --git a/html/cloud-platform.what.is.ssh.jump.server.html b/html/cloud-platform.what.is.ssh.jump.server.html new file mode 100644 index 00000000..37a627f0 --- /dev/null +++ b/html/cloud-platform.what.is.ssh.jump.server.html @@ -0,0 +1,51 @@ + + +
+ +It's common that you have a protected Linux/BSD server that isn’t publicly +accessible. Typically, you may have what is commonly referred to as a +jump server or bastion server which is accessible from a public +network (sometimes this jump server would be in a DMZ, and also Linux/BSD), +you connect to this jump server first, then connect to the protected server +from jump server.
+Sample setup:
++--------+ +-------------+ +------------------+
+| Laptop | <---> | Jump server | <--> | Protected server |
++--------+ +-------------+ +------------------+
+
+
+You can connect to the protected server through jump server via ssh with +command like below:
+ssh -v -J user1@jump-server user2@protected-server
+
+
+