Server Administrator Guide¶
Resources for system administrators and DevOps engineers setting up SSH servers and AWS infrastructure for StormTunnel connections.
Quick Start¶
-
SSH Server Setup
Install and configure OpenSSH servers. Set up port forwarding, authentication, and logging.
-
AWS Configuration
Configure EC2 instances, Session Manager, IAM roles, and security groups.
-
Server Security
Harden SSH servers with security best practices, firewall rules, and 2FA.
-
Monitoring & Logging
Monitor SSH connections, set up logging, and configure security alerts.
Common Tasks¶
Initial Setup¶
| Task | Guide |
|---|---|
| Install OpenSSH server | SSH Server Setup |
| Configure AWS infrastructure | AWS Configuration |
| Harden SSH security | Server Security |
| Set up logging | Monitoring & Logging |
Configuration Examples¶
| Environment | Key Settings |
|---|---|
| Development | Password auth OK, basic logging, open port forwarding |
| Staging | SSH keys required, verbose logging, restricted forwarding |
| Production | Keys only, 2FA, fail2ban, audit logging, IP restrictions |
See SSH Server Setup for full configurations.
Security Checklist¶
Essential (all environments):
- Disable root login (
PermitRootLogin no) - Use SSH keys (
PubkeyAuthentication yes) - Enable logging (
LogLevel VERBOSE) - Configure firewall rules
Production environments:
- Disable password auth (
PasswordAuthentication no) - Implement 2FA (Server Security)
- Configure fail2ban (Server Security)
- Set up audit logging (Monitoring)
Related Resources¶
For StormTunnel Users¶
- Getting Started - First-time user guide
- Troubleshooting - Connection issues
- AWS Session Manager - Client setup
Technical Reference¶
- AWS IAM Policies - Required permissions
- Connection Testing - Diagnostics
- Import/Export - Sharing configurations