Bastion Host is a special-purpose internet-accessible server that accepts SSH connections for the purpose of accessing internal machines and resources. Specifically designed and configured to withstand attacks, the server generally hosts a single application or process, for example, a proxy server or load balancer, and all other services are removed or limited to reduce the threat to the server. Typically, a user connects to the bastion first, then makes another SSH connection to the final destination, often called a “jump”. Bastion servers are sometimes called “jump hosts” or “jump servers.”

Related Terms

Access Tier

An Access Tier is an identity-aware proxy and gateway that mediates access into a private network segment within ...

Advanced Persistent Threat (APT)

An Advanced Persistent Threat (APT) is a targeted and prolonged cyber attack by skilled attackers who gain ...

Anti-Phishing

Techniques and mechanisms implemented in SWGs to detect and block phishing attacks, which attempt to deceive users ...

API Attack Surface

The set of all endpoints and functions exposed by an application programming interface (API) that could be ...

APT35

Overview: APT35, also known as Charming Kitten, Newscaster, or Mint Sandstorm, conducts long-term, ...

APT39

Overview: APT39, also known as Chafer, surveils individuals and entities considered to be a threat to Iranian ...

APT41

Overview: APT41, also known as Brass Typhoon. Espionage targeting healthcare, telecoms, and the high-tech sector, ...

Aquatic Panda

Overview: Aquatic Panda collects intelligence and conducts industrial espionage. Suspected Attribution: ...

Attack Surface

The total sum of all potential points or areas in a system, network, or application that are susceptible to ...

Attack Surface Analysis

The process of evaluating and understanding the various entry points and potential weaknesses in a system or ...

Attack Surface Reduction

Strategies and practices aimed at minimizing the overall attack surface by eliminating unnecessary services, ...

Backdoor

A hidden entry point or mechanism intentionally left in a system by developers or attackers to bypass security ...