Y
Hacker News
new
|
ask
|
show
|
jobs
by
idunno246
2289 days ago
os login is probably a little closer to ec2 instance connect because you still need ssh inbound access right? whereas aws provides a bastion here
2 comments
aPoCoMiLogin
2289 days ago
There is a proxy called IAP [1] which is used to create SSH tunnel over HTTPS to instances without public IP.
[1]
https://cloud.google.com/compute/docs/instances/connecting-a...
link
WaxProlix
2289 days ago
You're right in a sense, but there's no aws-managed bastion. Session manager communicates with your instance via an outbound-created websocket connection. Inputs and outputs are piped through it.
link
idunno246
2289 days ago
yea, i was trying to keep things simplified, but it has to proxy through something behind the vpc endpoint. could also say its not technically ssh
link
zokier
2289 days ago
Though you can actually get ssh through ssm:
https://docs.aws.amazon.com/systems-manager/latest/userguide...
link
[1] https://cloud.google.com/compute/docs/instances/connecting-a...