Bastion Host

You can connect to different deployed pilot components via the Bastion Host. Each pilot comes with a default bastion host that allows you to access pilot network resources via SSH tunneling. SSH is available on port 22 and user accounts on the Bastion Hosts are synced with the Azure AD. You can use your ec-dataplatform.eu accounts to access Amazon WorkSpaces. Pilot Bastion Hosts can only be accessed by the AD groups that are assigned to a pilot. If you want to access web interfaces that are deployed in a pilot network, you will need to forward the IP/DNS of the web interface and the port where it is hosted (HTTP:80, HTTPS:443, Apache Hue:8888, …) to your local desktop via SSH tunneling.

You can also use the Bastion Host as a jump host to SSH into pilot resources that have port 22 open.

Access web interfaces via SSH (PuTTY example)

Use these steps if you want to access web interfaces from your local desktop that are deployed in your pilot network (e.g. Apache Hue, Data Science Studio, Kibana).

• Download and install PuTTY (https://www.putty.org/)

• In the ‘Session’ tab, enter as Host Name: IP address of your pilot’s Bastion Host

• Go to tab “Connection – SSH – Tunnels”.

• Enter as Destination, private_host_ip_address:port.

  a. private_host_ip_address: This is the IP address or DNS of the web interface that you want to access.

  b. port: This is the port where the web interface is running on. For regular web applications that use HTTPS, use port 443. If a specific port is mentioned in the documentation of the resource, use that port. For example, Apache Hue uses port 8888.

• Enter as Source port: local_port, an vailable free port on your local system (e.g. 10000)

• Click on Add.

1. Click on Open.