Create an AWS Security Group for a Bastion Server to Manage EC2 Instances
In this lab you will practice creating security groups and testing SSH access. At the end, you will have a bastion server that allows access to hosts internal to a VPC.
Terms and conditions apply.
Challenge
Create an SSH Key Pair
Create an SSH key pair to use with the bastion server. Save the private key file you download somewhere convenient.
Challenge
Create a Bastion Security Group
Create a security group for the bastion server which restricts SSH access to only your public IP.
Challenge
Create a Bastion Server with Public IP
Create a new EC2 instance with a public IP and associate it with the bastion server security group and your SSH key.
Challenge
Create an Internal Hosts Security Group
Create a security group for internal hosts to allow SSH access from the bastion server.
Challenge
Enable Bastion to Access Internal EC2 Hosts
Modify a provided EC2 host to use the new internal security group and test SSH access from the bastion server.
Provided environment for hands-on practice
We will provide the credentials and environment necessary for you to practice right within your browser.
Guided walkthrough
Follow along with the author’s guided walkthrough and build something new in your provided environment!
Did you know?
On average, you retain 75% more of your learning if you get time for practice.
Recommended prerequisites
- How to launch and log into an EC2 instance