Категории

126. Bastion Containers

Опубликовано: 27 Июнь 2024
на канале: AWS Bites
236
8

This episode discusses solutions for securely accessing private VPC resources for debugging and troubleshooting. We cover traditional approaches like bastion hosts and VPNs and newer solutions using containers and AWS services like Fargate, ECS, and SSM. We explain how to set up a Fargate task with a container image with the necessary tools, enable ECS integration with SSM, and use SSM to start remote shells and port forwarding tunnels into the container. This provides on-demand access without exposing resources on the public internet. We share a Python script to simplify the process. We suggest ideas for improvements like auto-scaling the container down when idle. Overall, this lightweight containerized approach can provide easy access for debugging compared to managing EC2 instances.

💰 SPONSORS 💰

AWS Bites is brought to you by fourTheorem an AWS consulting partner with tons of experience with AWS. If you need someone to help you with your ambitions AWS projects, check out https://fourtheorem.com


🔖 Chapters:

00:00 Introduction
00:55 The problem of accessing private VPC resources
03:24 The challenges of using EC2 instances as a bastion host
04:32 Using containers instead of EC2 instances
04:38 Setting up a Fargate task with a container
07:35 Using SSM to connect to the container
10:24 Python script to simplify the process
11:54 Potential improvements
13:02 Closing notes


In this episode, we mentioned the following resources:

Our previous episode "78. When do you need a bastion host?": https://awsbites.com/78-when-do-you-n...
Basti - Securely connect to RDS, Elasticache, and other AWS resources in VPCs with no idle cost: https://github.com/basti-app/basti
Our gist with a Python script you can adjust to your needs: https://gist.github.com/eoinsha/157f6...

You can listen to AWS Bites wherever you get your podcasts:
Apple Podcasts: https://podcasts.apple.com/us/podcast...
Spotify: https://open.spotify.com/show/3Lh7Pzq...
Google: https://podcasts.google.com/feed/aHR0...
Breaker: https://www.breaker.audio/aws-bites
RSS: ​​https://anchor.fm/s/6a3312a0/podcast/rss


Do you have any AWS questions you would like us to address?
Leave a comment here or connect with us on X, formerly Twitter:
  / eoins  
  / loige  

#aws #bastion #vpc #networking #containers

Смотрите видео 126. Bastion Containers онлайн без регистрации, длительностью часов минут секунд в хорошем качестве. Это видео добавил пользователь AWS Bites 27 Июнь 2024, не забудьте поделиться им ссылкой с друзьями и знакомыми, на нашем сайте его посмотрели 23 раз и оно понравилось людям.

play_arrow
2,42
2

Gusto Payroll Price Plans Review (2023)

Gusto Payroll Price Plans Review (2023)
play_arrow
1,479,44
46 тыс

The Melancholy Downfall of IBallisticSquid

The Melancholy Downfall of IBallisticSquid
play_arrow
130,46
2.9 тыс

Дикая реклама средства от комаров

Дикая реклама средства от комаров

play_arrow
117,01
51

татарские танцы

татарские танцы
play_arrow
11

Паел картохи

Паел картохи

play_arrow
208,75
1.9 тыс

Программы выбираются, а стирка не начинается

Программы выбираются, а стирка не начинается
play_arrow
1,43
2

Лолита & Коста Лакоста — По-другому (Альтернативная версия) TITARSTAR

Лолита & Коста Лакоста — По-другому (Альтернативная версия) TITARSTAR
play_arrow
119,57
2.3 тыс

АЛГЕБРАИЧЕСКИЕ ВЫРАЖЕНИЯ 7 класс ПРИМЕРЫ формулы КАК РЕШАТЬ урок 1

АЛГЕБРАИЧЕСКИЕ ВЫРАЖЕНИЯ 7 класс ПРИМЕРЫ формулы КАК РЕШАТЬ урок 1
Похожие видео
play_arrow
130. Growing in Tech with Farrah Campbell

130. Growing in Tech with Farrah Campbell
play_arrow
129. Lambda Provisioned Concurrency

129. Lambda Provisioned Concurrency
play_arrow
128. Writing a book about Rust & Lambda

128. Writing a book about Rust & Lambda
play_arrow
127. Which Load Balancer should you use?

127. Which Load Balancer should you use?
play_arrow
126. Bastion Containers

126. Bastion Containers
play_arrow
125. A first look at CloudFront Hosting Toolkit

125. A first look at CloudFront Hosting Toolkit
play_arrow
124. S3 Performance

124. S3 Performance
play_arrow
123. What do you need to know about DynamoDB?

123. What do you need to know about DynamoDB?
play_arrow
122. Amazing Databases with Aurora

122. Amazing Databases with Aurora
play_arrow
121. 5 Ways to extend CloudFormation

121. 5 Ways to extend CloudFormation
play_arrow
120. Lambda Best Practices

120. Lambda Best Practices
play_arrow
119. The state of AWS 2024 (AnsWeRS community survey commentary)

119. The state of AWS 2024 (AnsWeRS community survey commentary)
play_arrow
118. The landing zone: Managing multiple AWS accounts

118. The landing zone: Managing multiple AWS accounts
play_arrow
117. What do EBS and a jellyfish have in common?

117. What do EBS and a jellyfish have in common?
play_arrow
116. What is RAM (Resource Access Manager)?

116. What is RAM (Resource Access Manager)?
play_arrow
115. What can you do with Permissions Boundaries?

115. What can you do with Permissions Boundaries?
play_arrow
114. What's up with LLRT, AWS' new Lambda Runtime?

114. What's up with LLRT, AWS' new Lambda Runtime?
play_arrow
113. How do you revoke leaked credentials?

113. How do you revoke leaked credentials?
play_arrow
112. What is a Service Control Policy (SCP)?

112. What is a Service Control Policy (SCP)?
play_arrow
What is technical debt #shorts

What is technical debt #shorts
play_arrow
111. How we run a Cloud Consulting business

111. How we run a Cloud Consulting business
play_arrow
110. Why should you use Lambda for Machine Learning?

110. Why should you use Lambda for Machine Learning?
play_arrow
109. What is the AWS Project Development Kit (PDK)?

109. What is the AWS Project Development Kit (PDK)?
play_arrow
AWS Bites Spotify Wrapped 2023 #shorts

AWS Bites Spotify Wrapped 2023 #shorts