Bastion host

From Wikipedia, the free encyclopedia

A bastion host is a computer on the network that provides a single entrance and exit point to the internet from the internal network and vice versa.

Bastion hosts are used to mitigate the security risks of a network by providing a barrier between private and public areas.

Bastion hosts are related to dual-homed hosts and screened hosts. While a dual-homed host often contains a firewall it is used to host other services as well. A screened host is a dual-homed host that is dedicated to running the firewall. To escalate to the bastion host level the screened host is hardend for the firewall purpose. (i.e. non-essential services and ports are shut down and/or closed)

[edit] See also

demilitarized zone (computing)

[edit] External links

This computer network-related article is a stub. You can help Wikipedia by expanding it.

Retrieved from "http://en.wikipedia.org../../../b/a/s/Bastion_host.html"

Categories: Computer network stubs | Computer network security | Network-related software

Views

Search

In other languages

This page was last modified 15:05, 24 November 2006 by Wikipedia user Rfc1394. Based on work by Wikipedia user(s) YurikBot, FayssalF, Carlep, Iluvcapra, JonHarder, Icurite, Spearhead, Joy, Josh Parris, Kappa, Eckhart Wörner, NetBot and Lucky 6.9 and Anonymous user(s) of Wikipedia.
All text is available under the terms of the GNU Free Documentation License. (See Copyrights for details.)
Wikipedia® is a registered trademark of the Wikimedia Foundation, Inc.
About Wikipedia
Disclaimers