Resource Management Overview
A bastion host enables centralized resource management, making it easier for you to manage entire lifecycle of managed resources and their accounts in a more secure way. You can easily switch over between resource management and maintenance through single sign-on (SSO) without affecting business running on resources.
Resource Management Scenario
You can use a bastion host instance to manage host resources, application resources, cloud services (containers), and database resources.
- Host, database, and application resources can be batch imported and exported.
- Before managing application and container resources, you need to create a server on your bastion host instance to establish connections between the bastion host and managed resources. After doing this, you can add resources to the bastion host for centralized management.
- In addition to managing Huawei Cloud resources, CBH can also manage non-Huawei Cloud and on-premises resources by creating a proxy server as long as the protocol is supported by CBH.
|
Resource Type |
Management Method |
|---|---|
|
Host resources |
|
|
Application resources |
You can create an application server in the bastion host instance to interconnect the application client with the bastion host instance, so that you can create and manage application resources with the bastion host instance. |
|
Database resources |
You can create, import, and automatically discover public network resources on the bastion host instance for management. |
|
Container resources |
You can create a Kubernetes server in your bastion host instance to establish connections between the Kubernetes worker nodes where the pods are running with the bastion host instance, so that you can create and manage container resources with the bastion host instance. |
Types of Managed Resources
You can use a bastion host to manage a wide range of resource types, including Windows and Linux servers, Windows applications, databases, such as MySQL and Oracle, and Kubernetes servers. A host may map to multiple host resources. This means if you configure different protocols for the same host, the host resources are counted based on the protocols you configure for this host. This is similar to application resources. The following lists supported resource types:
- Host resources of the client-server architecture, including hosts configured with the Secure Shell (SSH), Remote Desktop Protocol (RDP), Virtual Network Computing (VNC), Telnet, File Transfer Protocol (FTP), SSH File Transfer Protocol (SFTP), DB2, MySQL, SQL Server, Oracle, Secure Copy Protocol (SCP), or Rlogin protocol.
- Application resources of the browser-server architecture or the client-server architecture, including more than 12 types of browser- and client-side Windows applications, such as Microsoft Edge, Google Chrome, and Oracle tools.
Table 2 Types of resources a bastion host can manage Resource Type
OS and Protocol Types Supported
Host resources
Supported protocols: SSH, RDP, VNC, Telnet, FTP, SFTP, SCP, and Rlogin
Supported OS types, Linux, Windows, Cisco, Huawei, H3C, DPtech, Ruijie, Sugon, Digital China sm-s-g 10-600, Digital China sm-d-d 10-600, ZTE, ZTE5950-52tm, Surfilter, and ChangAn
Application resources
- Supported Windows application types: MySQL Tool, Microsoft Edge, Mozilla Firefox for Windows, Oracle Tool, Google Chrome, VNC Client, SQL Server Tool, SecBrowser, vSphere Client, Radmin, dbisql, Navicat for MySQL, Navicat for PostgreSQL, Internet Explorer, and Other.
- Supported Linux application types: DM Tool, KingbaseES Tool, Mozilla Firefox for Linux, and GBaseDataStudio for GBase8a.
Database resources
Supported protocols: GaussDB , PostgreSQL, DB2, MySQL, SQL Server, Oracle and DM.
Container resources
Currently, only Kubernetes servers are supported.
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.
For any further questions, feel free to contact us through the chatbot.
Chatbot
