A bastion host is pretty much anything you are going to expose to the
outside world (i.e. a machine you put in your DMZ). It should be hardened
as much as possible and only run services critical to it's function.
The Building Internet Firewalls by Chapman and Zwickey describes what a
bastion host is pretty well.
----- Original Message -----
From: "Noonan, Wesley" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Wednesday, August 30, 2000 3:56 PM
Subject: Bastion Hosts
> Does anyone have any books, whitepapers, websites, etc. that define in
some
> detail what a bastion host is? I think I understand what they are and
> why/where one should implement them, but want to make sure. As an example,
> would an external DNS server, either on a DMZ or exposed, used as a
> forwarder be considered a bastion host? TIA
>
> Wes Noonan, MCP+I/MCSE/MCT/CCNA/NNCSS
> Senior QA Rep
> (713) 918-2412
> BMC Software, Inc.
> [EMAIL PROTECTED]
> http://www.bmc.com
>
> -
> [To unsubscribe, send mail to [EMAIL PROTECTED] with
> "unsubscribe firewalls" in the body of the message.]
>
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
