What are the stepping stones?
A. First, introduce some of the stepping stones.
Fort machine internal ramp machine is visible, the host application system is a single point for landing. Springboard is a server machine, maintenance personnel in the maintenance process, the first to unify log on to this server, and then from this server and then log on to the target device for maintenance. But the machine did not realize springboard for operation and maintenance personnel operating behavior of the control and audit. In addition, there is a serious security risk springboard machine, once the system is a springboard scored, then the back-end resource risk completely exposed.
For individual resources (such as telnet) can be done by a certain internal stepping stones, but for more and more special resource (ftp, rdp, etc.) is concerned becomes insufficient.
What is the fortress machine?
...
Environmental issues
1. The need to use multiple servers in a test environment
2. own crash bastion configuration is too low, with Vmware open multiple servers on a card too
high 3. corporate desktop configuration, 16G open 67 virtual machines is still very OK
Windows stepping stones to build
1. Open the windows of the SSH service
open Settings -> Applications and Functions -> Management Optional features -> Open to install OpenSSH server
error
If you are unable to install ssh server, it may be because before the service shut inside the windows update service out, first come up after the installation is complete, you can disable
2. configure ssh environmental
administrator permission to open powershell
Get-WindowsCapability -Online | ? Name -like 'OpenSSH*'
The output should look like this
Name : OpenSSH.Client~~~~0.0.1.0
State : NotPresent
Name : OpenSSH.Server~~~~0.0.1.0
State : NotPresent
Installing the server
Add-WindowsCapability -Online -Name OpenSSH.Server~~~~0.0.1.0
Output
Path :
Online : True
RestartNeeded : False
Open SSHD service
Start-Service sshd
Set up services from the start
Set-Service -Name sshd -StartupType 'Automatic'
Firewall Privileges
Get-NetFirewallRule -Name *ssh*
Output
OpenSSH-Server-In-TCP status enabled。
After then we'll use vmware centos install multiple systems, use ssh to log on windows windows system in the computer, then ssh to log each station centos7 system. Ha ha ha ha ha ha ha, white prostitute multiple testing machine