44 ‐ Install application in Bastion server and validate the connectivity - SanjeevOCI/Ocidocs GitHub Wiki

Objective

This lab demonstrates how to:

  • Install utilities on a bastion host in a public subnet.
  • Deploy a simple application in a private subnet VM.
  • Validate connectivity through the bastion host (SSH, curl, tunnels).
  • Apply OCI best practices for security and routing.

Reference Architecture

  • Bastion Host in a public subnet with a public IP, used as a jump server.
  • Application VM in a private subnet, no public IP.
  • Connectivity allowed only via bastion → private VM.
  • Outbound internet for private VM (package updates) via NAT Gateway.
  • Optional Service Gateway for private PaaS access (e.g., Object Storage).

Install application in Bastion server and validate the connectivity_2

Install application in Bastion server and validate the connectivity_3

Install application in Bastion server and validate the connectivity_4

Install application in Bastion server and validate the connectivity_5

Install application in Bastion server and validate the connectivity_6

Install application in Bastion server and validate the connectivity_7

Install application in Bastion server and validate the connectivity_8

Install application in Bastion server and validate the connectivity_9

Install application in Bastion server and validate the connectivity_10

Install application in Bastion server and validate the connectivity_11

Install application in Bastion server and validate the connectivity_12

Install application in Bastion server and validate the connectivity_13

Install application in Bastion server and validate the connectivity_14

Install application in Bastion server and validate the connectivity_15

Install application in Bastion server and validate the connectivity_16

Install application in Bastion server and validate the connectivity_17

Install application in Bastion server and validate the connectivity_18

Install application in Bastion server and validate the connectivity_19

Install application in Bastion server and validate the connectivity_20