I was looking for a secure way to manage my cloud infrastructure and found those two projects in Guihub. Both provide a web GUI to support major remote management protocols to connect to remote targets.
Bastion server (Jump Server) connects your VMs, your local computers, and cloud resources without exposing them to public network connections. This bastion server or jump server can be treated as a single audit point for logging access to the remote targets. Both jump servers and bastion hosts are considered weak points and careful attention must be given to keep them up to date and monitored.
Webterminal bastion server
Project address: https://jimmy201602.github.io/webterminal/
Webterminal implemented by django. This project focus on DevOps and Continuous Delivery. For now it support almost 90% remote management protocol such as vnc, ssh,rdp,telnet,sftp… It support a possiblity to monitor and recorded user action when user use this project to manage their server!You can also replay the user action such as like a video. Hope you enjoy it.
Run with docker
Successfully ran it in a VM only has 1vCPU and 1G RAM. Nice!
[node1] (local) firstname.lastname@example.org ~ docker run -itd -p 80:80 -p 2100:2100 webterminal/webterminal Unable to find image 'webterminal/webterminal:latest' locally latest: Pulling from webterminal/webterminal 5bed26d33875: Pulling fs layer f11b29a9c730: Pulling fs layer 930bda195c84: Pulling fs layer 78bf9a5ad49e: Waiting 40bfa83ccba3: Waiting e0c622d8a177: Waiting a77fd2b28058: Pulling fs layer d23ecd878679: Waiting 6396b0b41768: Waiting a0c3712d46f1: Pull complete 5cf29e2c162f: Pull complete 50fa1365dd0e: Pull complete df9b9e9a9ef4: Pull complete 43b940435464: Pull complete 8f805c3f9ffe: Pull complete c4b10cb83cab: Pull complete a6945596333f: Pull complete 1b3ded0589ee: Pull complete b09dd8cf0745: Pull complete c2d92b59414c: Pull complete 218a54c37087: Pull complete 36be31be50c2: Pull complete 6fcad3ac8e8e: Pull complete 2eb58f11f849: Pull complete f1d9848986dd: Pull complete dbc8d56aa423: Pull complete 199643251bfe: Pull complete 606c39648549: Pull complete 938714a329ae: Pull complete 9db62e071241: Pull complete 45109cc2cdf6: Pull complete f7ebbe9a19f6: Pull complete 730f510e852c: Pull complete e9d93fd1fb19: Pull complete Digest: sha256:b7d3e783ec7ba021bf35d5da4dbca2f98319dc458f1b1160b6ef9ad4f62c4fe3 Status: Downloaded newer image for webterminal/webterminal:latest 558ff7acc25f22f0078bb644aad30b26875b3b52fb3c191ed2a37fcbad25e621 [node1] (local) email@example.com ~
Quick Configuration Steps:
add new credential
Add New Server
Add into a server group
Add new permission list
Check video recording
One-click installation of JumpServer
curl -sSL https://github.com/jumpserver/jumpserver/releases/download/2.0.1/quick_start.sh | sh
Container Deployment Command.
Unfortunately, during my test, I could not access docker's Web site although it was running successfully in Docker.
Default username / password : admin /admin
Create Assets – admin users
Create Assets – system user
Create Assets – Assets
Create Permissions – Asset Permissions
RDP / SSH Connections – Sessions – Web terminal
Sftp – Sessions – File manager
Recording : Sessions – Sessions