Home Security & Privacy SSH Bastion Setup

SSH Bastion Setup Cheat Sheet

Secure jump hosts

Last Updated: November 21, 2025

Focus Areas

Focus
Limit inbound IPs to bastion
Log bastion session commands

Commands & Queries

ssh -J bastion user@host
Proxy through bastion
aws ec2-instance-connect send-ssh-public-key
Provision key
journalctl -u sshd
Review logs

Summary

Bastions keep real hosts shielded behind controls.

Related Cheat Sheets

Vault Secrets Engines

Enable engines, generate dynamic credentials, and renew leases

Incident Response

Declare incidents, contain, communicate, and learn

Node.js Security

Audit dependencies, configure CSP, and lock env variables

Passwordless Authentication

Deploy magic links, WebAuthn passkeys, and OTP flows

💡 Pro Tip: Audit jump host sessions and rotate keys monthly.

Related Cheat Sheets

Browse all Security & Privacy →

← Back to Security & Privacy | Browse all categories | View all cheat sheets