Skip to content

Bastion jump host #88

New issue
New issue
Open
Open
Bastion jump host#88
Labels
enhancementNew feature or requestinfraInfrastructure (AWS)k8sKubernetes related changessecurityRelating to the security of the application or this repo
@MNThomson

Description

@MNThomson
MNThomson
opened on Feb 15, 2023

Is your feature request related to a problem? Please describe.

I don't want the k8s api endpoint exposed on the nodes as this opens a massive attack surface.

Describe the solution you'd like

  • A small EC2 instance running in the same VPC (potentially an autoscaling group to ensure one always exists).
  • NLB targeting instance for ssh access
  • K8s config setup

Metadata

Metadata

Assignees

No one assigned

    Labels

    enhancementNew feature or requestinfraInfrastructure (AWS)k8sKubernetes related changessecurityRelating to the security of the application or this repo

    Type

    No type

    Projects

    Infra Roadmap

    Status

    Todo

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions