What is Bastion Host and why it is so important? - Step by Step tutorial (Part-6)
Рет қаралды 30,804
Күн бұрын
@UntamedRogueMavrick 29 күн бұрын
You are compressing my learning timeline from months to hours. I really appreciate your selflessness.
@RahulWagh 29 күн бұрын
Cheers to that
@debashissinha8489 8 ай бұрын
O my God !! The unique way Rahul explains is the superb in my IT tenure. Is there any Azure DevOps series of terraform automation created by Rahul ?? Hats off for your rare quality, Rahul !!!
@RahulWagh 8 ай бұрын
Thanks for liking it. As off now there is no terraform azure series
@SureshKumar-kh5ht 10 ай бұрын
Your are one of the best DevOps trainers Who provides in deapth info for DevOps aspirants Thank you Rahul
@RahulWagh 10 ай бұрын
Glad to help
@dmt15 Жыл бұрын
What a great series with clear explanation. Please continue this series, I’m looking forward to the next chapter :)
@RahulWagh Жыл бұрын
There are more to come but if you are interested in more in depth content consider being KZbin member for more premium content
@manthuvishwakarma 7 ай бұрын
You are the one who is teaching the topics from Scratch and explaining in easy way to understand the topics very easily. Thank you so much sir.
@RahulWagh 7 ай бұрын
You are most welcome
@NickVinckier 10 ай бұрын
Thank you for such a clear explanation and demo. The pace of this was perfect for me and I was able to grasp the concepts well. Created my own VPC with bastion/jump host and all was working as intended. Many thanks and keep the great content coming!
@RahulWagh 10 ай бұрын
Glad to hear that it works for you
@michaelakinyomitgod4961 5 ай бұрын
Your Training Method is superb Rahul; hats off for You!
@RahulWagh 5 ай бұрын
You are welcome
@sameerkashmiri9947 5 ай бұрын
What a great series with clear explanation and thank you so much for this lecture.
@RahulWagh 5 ай бұрын
You are welcome
@clipsupportgroup8292 7 ай бұрын
Good job sir, I cleared my doubts. Thanks once again.
@fahim8690 9 ай бұрын
Thank you very much for this series.. This series really helpful for beginner's like me❤️
@RahulWagh 9 ай бұрын
You're welcome 😊
@RameshKr-ot4ju 6 ай бұрын
Sir you teach with the help of digrarm that makes the things CLEAR. Thank you sir best teacher 😍😍
@RahulWagh 6 ай бұрын
Glad to hear that
@BarneyMyBoy 7 ай бұрын
Thank you sir , so far this is the best tutorial about the topic that I have been searching. The diagram and step-by-step demo are really easy and helpful for me to follow along. Liked and subscribed.
@RahulWagh 7 ай бұрын
You are welcome
@AzamAslam-x2f 9 ай бұрын
Thank you Rahul bhai. you really doing great job for us.
@RahulWagh 9 ай бұрын
Thanks and welcome
@Dinesh_Krish 3 ай бұрын
Excellent explanation, This is very helpful for me...
@RahulWagh 3 ай бұрын
Glad to hear that
@Abwhinnaw 9 сағат бұрын
thank you so much, can you please do CICD in detailing.
@deexithshetty3563 2 ай бұрын
Best and clear explanation ❤
@RahulWagh Ай бұрын
Thanks a lot 😊
@chukwumaonu7687 11 ай бұрын
This is cool, what looks like a mirage, you made it so simple. Thanks Bro
@paragvade 10 ай бұрын
Thank you Rahul.. wonderfully explained
@RahulWagh 10 ай бұрын
Thanks and welcome
@prateekverma5169 Жыл бұрын
on point demo , thanks for such content
@RahulWagh Жыл бұрын
Glad you like it!
@mothusi 7 ай бұрын
Does having an EC2 instance in a public subnet automatically make that a Bastian host? Because in the video I did not see any specific configurations to the instance in the public subnet. What make an EC2 instance a Bastian host?
@shaikayub1497 4 ай бұрын
This is I want to ask him. He did not made any configurations as bastion host. He just allowed the IP-address range of public subnet to the private subnet. How can he say that it is bastion host. Simply he can say that instead of using NAT gateway with elastic IP. we can only use public subnet range.
@SrikanthKurri-t6e Ай бұрын
The public EC2 instance in the public subnet is called the Bastion Host (or Jump Host).
@pradipsharma8504 Жыл бұрын
Wonderful session. Thanks a lot for your honest effort.
@RahulWagh Жыл бұрын
Glad to know the feedback back
@SrikanthKurri-t6e Ай бұрын
thank you so much for your videos. these are helping me a lot.
@RahulWagh Ай бұрын
You are most welcome
@kumarswamyba5876 7 ай бұрын
Thank you very much for such a wonderful session sir
@RahulWagh 7 ай бұрын
Keep watching
@johnpol6968 5 ай бұрын
how ssh through bastion host into host in private subnet more secure? Perhaps shade some lite on that.
@dips_07 Жыл бұрын
What an insightful share... thank you 🙏🙏
@RahulWagh Жыл бұрын
Cheers
@SinaSoltani-tf8zo 4 ай бұрын
Hi, thanks for the video. Is there anything like this for databases and other services too? I'm trying to find a way to access an internal database from my own PC. The internal database is just a database that is being used by an API on AWS. How can I use something like a VPN to open the database from my own PC?
@sahilk335 7 ай бұрын
Thank you for detailed explanation.
@RahulWagh 7 ай бұрын
You are most welcome
@gurunathaade4499 Жыл бұрын
Hi sir , You are doing great jobs pls make a series continuesly, i hope you have to be done with the best way 🙏❤
@RahulWagh Жыл бұрын
Cheers
@nsquare_4 5 ай бұрын
whenever you create the instance you gave the name of test-key-pair , but when we login into the machine the name of the key will be different. how it happens
@shakunthalapulugu755 11 ай бұрын
Hi sir,Thankyou for your elaborated explanation.. please explain the purpose of Natgateway.
@gouthamu5424 5 ай бұрын
Hi Rahul, Does all the Instances in the Public subnet will have the Public IP assigned to it ? I thought public subnet is the one with IGW and private subnet is the one with NAT gateway. In the AWS console i have VM's with Public subnet routed to IGW, but the internet doesn't work unless i enable it with Public IP assignment.
@ramamoorthy3444 9 ай бұрын
Great explaination. I clear understanding
@RahulWagh 9 ай бұрын
Great to hear!
@pramodpunnuche5426 Жыл бұрын
Hi Rahul, Thank for the detailed session and I have one question here during NAT gateway session you connected from pubilc ec2 to private ec2 without enabling public IP subnet in private ec2 SG, how you did that? or its connected via NAT gateway?
@RahulWagh Жыл бұрын
both the ec2 instances are in the same VPC which means both are in same network. The public ec2 instance present in public is only accesible via internet but the ec2 instance present in private subnet can be accessed via public ec2 instance internally without the need of NAT gateway because both of them are in internal network
@oluwabusayoshofowora4372 9 ай бұрын
Thank you, you made me think deeper.
@RahulWagh 9 ай бұрын
You're very welcome
@clipsupportgroup8292 7 ай бұрын
can we set the rule at S3 , after number of days the particular url link(downlodable) will not work if i shared it publically? Please guide me.
@nurhossainsakil9904 11 ай бұрын
I can't copy the private key. Can anyone help me please?
@oluwasilea1307 6 ай бұрын
Thank You! I am a beginner ❤
@RahulWagh 6 ай бұрын
You're so welcome!
@A.Sandeep-18 9 ай бұрын
Liked , commented and subscribed with this one video ❤... looking forward to learn more
@RahulWagh 9 ай бұрын
Glad to have you
@farhanmqsd Ай бұрын
Great Video
@manthuvishwakarma 7 ай бұрын
Can you make an video related to how to build SSH connection from bastion Host to EC2 user in Windows PC
@ThotaSrinath 3 ай бұрын
Hi Rahul, thanks a lot for the videos. Learning a lot from these videos. One question on bastion host, when we are copying the private key of ec2 which is in a private subnet to the internet exposed ec2 machine in a public subnet. Is it secured?
@nurhossainsakil9904 11 ай бұрын
@RahulWagh please help to get the copy of my private key. I can't read or copy the key from my .pem file
@thapasujan07 7 ай бұрын
Thank you Sir. 💞
@RahulWagh 7 ай бұрын
Always welcome
@tathagatadas2825 6 ай бұрын
Awesome content bro....thanks
@RahulWagh 6 ай бұрын
So nice of you
@boscokuttikatt Ай бұрын
Amaizing!!
@VijayaBaskarvvk 3 ай бұрын
Hi Rahul, when we define subnets, when have to use Private ranges right? Such as 192.168.x.x, 172.16.x.x to 172.31.x.x, or 10.x.x.x. Or it doesn't matter?
@RahulWagh 3 ай бұрын
It totally depends on your org practice on assignment of cidrs
@nsquare_4 5 ай бұрын
sir im unable to understand how the name of the key you changed, please explain sir
@kiranyadav-gf6cd 8 ай бұрын
Amazing content bro.. keep going on please do aws solution architect entire course..
@RahulWagh 8 ай бұрын
Thanks and sure
@harryprsd1 Жыл бұрын
Great info. Can we have similar setup in azure?
@RahulWagh Жыл бұрын
Yes the bastion host concept is common and can be used in any cloud provider
@nikkiheer4091 8 ай бұрын
I am not able to connect to private ec2 while connecting to private ec2 from bastion host. Doing ssh as shown in video, i did all steps correctly and tried but while doing ssh to private ec2 nothing is coming, its just blank
@RahulWagh 8 ай бұрын
could be many reasons but check the security groups
@manojgandham-lu7tu Жыл бұрын
Well explained ❤
@RahulWagh Жыл бұрын
Glad it was helpful!
@nikkiheer4091 8 ай бұрын
Now it's working thank you.
@iamsreejuks 11 ай бұрын
Hello Rahul, Correct me if I am wrong, both the ec2 instances are in the same VPC which means both are in same network, so it will connect right?. I still could not understand the concept of bastion. I already watched "Mastering AWS: NAT Gateway Setup in Your VPC" video, comparing these to, the differences are, in this video you explicitly adding Security group and in NAT gateway video all the configurations are same except the private subnet want to access internet(outbound only) using NAT. So adding the security group(enabling access from Private IPs of Public EC2 to all port in the Private ec2) is how a bastion host differs from normal private-public environment.
@bhardwaj_abhi3421 10 ай бұрын
yup ,whole setup is same as explained in VPC video
@ShaliniSingh-mu3em 7 ай бұрын
How do we establish an internet connection on private ec2?
@RahulWagh 7 ай бұрын
Use NAT gateway
@raghavayoga 8 ай бұрын
Very well explained
@RahulWagh 8 ай бұрын
Keep watching
@peterrubinstein6975 5 ай бұрын
Great video. How do you do the diagrams
@RahulWagh 5 ай бұрын
I just use the ppts nothing more
@SanketGaikwad-o9e 2 ай бұрын
in ssh its not connecting
@RahulWagh 2 ай бұрын
Check security groups and source
@subash000000 Жыл бұрын
why we are using ipv4 cidr 0f 12 range why not 10 ?
@RahulWagh Жыл бұрын
When it comes to choosing a CIDR range for a network, there are several factors to consider, including the size of the network, the number of hosts that need to be accommodated, and the availability of IP addresses. The "/12" in IPv4 CIDR notation corresponds to a subnet mask of 255.240.0.0, which means that the first 12 bits of the IP address are used for the network portion, leaving 20 bits for host addresses. This allows for a total of 2^20, or 1,048,576, IP addresses in the subnet (though the first and last addresses are reserved for the network and broadcast addresses, respectively). On the other hand, a "/10" CIDR range corresponds to a subnet mask of 255.192.0.0, which provides for 2^22, or 4,194,304, IP addresses in the subnet. The decision to use a "/12" CIDR range instead of a "/10" range would typically be based on the need for fewer IP addresses than a "/10" range provides. Using a "/12" range when a "/10" range is not necessary can help conserve IP addresses, which is particularly important given the limited availability of IPv4 addresses. However, it's also worth noting that the decision could be influenced by other factors, such as the design of the larger network, routing considerations, and the allocation policies of the organization or service provider managing the IP addresses.
@subash000000 Жыл бұрын
@@RahulWagh.thank you for your explanation but i mean we use 10.x.x.x but you use 12. i liked your teaching and explanation.🙂
@RahulWagh Жыл бұрын
@@subash000000 there is no rule on using 10.x.x.. or 12.x.x…. It is your own vpc just pick the range which you like. The vpcs are not in public domain so you have liberty to choose any range
@subash000000 Жыл бұрын
@@RahulWagh thank you for such quick response.
@VarunH-w3w 6 ай бұрын
Can you please make a video on how to Configure the Web application(Python Flask) And Database (Postgre SQl) in the EC2 instance, by using the same security bastion host.
@RahulWagh 6 ай бұрын
It is already there - Real Time DevOps Project | Use Terraform Jenkins AWS to deploy REST API kzbin.info/www/bejne/paW0opdtfLeJgZI
@atharvameher5880 8 ай бұрын
Great content man
@RahulWagh 8 ай бұрын
You are welcome
@rupakmahto2095 6 ай бұрын
Thank you so much .
@RahulWagh 6 ай бұрын
You're most welcome
@shailendraverma1675 8 ай бұрын
Hello sir what if we created our bastion host in private network so is there anyway ? How we can access that
@RahulWagh 8 ай бұрын
The whole purpose of bastion host is to enable access to server present into private subnets. Bastion host in private subnet doesn’t make a sense
@shailendraverma1675 8 ай бұрын
@@RahulWagh thanks for replying !!! To make this process more secure what can we do any suggestions ?? Like can we attach a VPN
@vikki5329 11 ай бұрын
Awsome Example Bro can you please cover examples for Elastic Network Interfaces,Elastic Fabric and Elatic adapter network and placement groups
@RahulWagh 11 ай бұрын
Noted
@kammellapradeep7224 9 ай бұрын
Very nicely explained , do you cover google cloud topics as well Rahul?
@RahulWagh 9 ай бұрын
Not yet on GCP yet but soon I am planning to do it. What would you like to see on GCP?
@githinthomas4787 10 ай бұрын
well explained thank you
@RahulWagh 10 ай бұрын
You're welcome!
@tanayabanerjee2380 Жыл бұрын
Hello sir...if possible then please try to make a detail video on IP, Subnetting or other networking concepts ,it will be very helpful...Thank you🙂
@RahulWagh Жыл бұрын
Here is a video which is already there on my channel- AWS how to setup VPC, Public, Private Subnet, NAT, Internet Gateway, Route Table? - (Part-5) kzbin.info/www/bejne/amTXeottbpVkfdU
@mandodarimodi7555 9 ай бұрын
Thaks for sharing.
@MahekMordani-pu8sx 8 ай бұрын
Hi Rahul do you also do one on one consulting for entrepreneurs
@RahulWagh 8 ай бұрын
There is paid consulting which I do, if interested you can reach out to me at - rahul.wagh@jhooq.com
@PravinN-z8q Ай бұрын
Thank you
@RahulWagh Ай бұрын
You're welcome
@DeepikaDecodes Жыл бұрын
Awesome 👌
@RahulWagh Жыл бұрын
Thank you! Cheers!
@brianlevu3507 11 ай бұрын
why didnt you use scp to cpoy the pem file
@RahulWagh 11 ай бұрын
Yes you can use SCP instead of manually copying the ssh keys
@brianlevu3507 10 ай бұрын
@@RahulWagh 😆
@prashantsukhadeve9642 Жыл бұрын
Good Evening Rahul. I hope you are doing well
@RahulWagh Жыл бұрын
hi parshant good evening i am good thanks for asking
@manojgandham-lu7tu Жыл бұрын
Can we expect ks8 series from you..?
@RahulWagh Жыл бұрын
Hopefully soon I will prepare in k8s
@an859 4 ай бұрын
Felt like sunder pichai teaching me 😀
@neetupalLife 5 ай бұрын
👏
@srihari9381 3 ай бұрын
All ok but in the last why you not created a new key pair instead of using a existing....last 10 mins unable to understand...
@qolbinurwandi 4 ай бұрын
I always get this error ubuntu@ip-10-0-0-80:~$ ssh -i "aws_ec2_instance_key.pem" ubuntu@10.0.1.179 ubuntu@10.0.1.179: Permission denied (publickey,gssapi-keyex,gssapi-with-mic). anyone have any idea?
@bikdigdaddy 7 ай бұрын
i did the exact same but i didn't make a private route table and it still worked. why
@RahulWagh 7 ай бұрын
May be you might have made the private subnet as public subnet
@bikdigdaddy 7 ай бұрын
@@RahulWagh I'm pretty sure i did not. upon further inspection, i found that there's a default route table assigned to the private subnet (you see it at 10:44) and that allows connectivity inside the same VPC. so that implies if you allow ssh to pvt ec2 in the security group, you'll be able to connect to it from the public ec2 thus no route table needed.
Rahul Wagh
Рет қаралды 87 М.
Rahul Wagh
Рет қаралды 34 М.
Hello Interview - SWE Interview Preparation
Рет қаралды 66 М.