A prospective administrator must log into the jump server in order to gain access to the DMZ assets and all access can be logged for later audit.Ī typical configuration is a hardened Unix (or Unix-like) machine configured with SSH and a local firewall. The jump server acts as a single audit point for traffic and also a single place where user accounts can be managed. Jump servers are often placed between a secure zone and a DMZ to provide transparent management of devices on the DMZ once a management session has been established. As SSH-based tunneling became common, jump servers became the de facto method of access. The jump server would span the two networks and typically be used in conjunction with a proxy service such as SOCKS to provide access from an administrative desktop to the managed device. The jump server concept emerged to meet this need. In the 1990s when co-location facilities became more common there was a need to provide access between dissimilar security zones. The most common example is managing a host in a DMZ from trusted networks or computers. A jump server is a hardened and monitored device that spans two dissimilar security zones and provides a controlled means of access between them. ( Learn how and when to remove this template message)Ī jump server, jump host or jump box is a system on a network used to access and manage devices in a separate security zone. ( October 2021) ( Learn how and when to remove this template message)
Statements consisting only of original research should be removed. Please improve it by verifying the claims made and adding inline citations. This article possibly contains original research.
0 kommentar(er)
