Bastionhost is built on top of a stable cloud architecture and runs in dual-engine mode. Bastionhost can be deployed across the globe to ensure stable, secure, and efficient O&M of assets. This topic describes the benefits of Bastionhost.
Secure and reliable cloud architecture
Bastionhost adopts a cloud architecture where servers, Logstores, and distributed databases are independently deployed. This achieves physical isolation and resource decoupling of core components, ensuring reliability and risk resistance of system components and improving service quality. Bastionhost is a closed-source service that protects against attacks and ensures a secure and stable runtime environment.
Dual-engine and active-active architecture to implement seamless disaster recovery
Bastionhost Enterprise Edition uses a dual-engine architecture where both engines are active, offering a 99.95% Service Level Agreement (SLA). In daily operations, Bastionhost supports intelligent load balancing and dynamically allocates business traffic to optimize resource allocation and improve O&M efficiency. If a channel or node fails, the high availability (HA) mode is enabled to seamlessly switch between engines to ensure business continuity and monitoring data integrity. The active-active architecture effectively avoids risks caused by single points of failure (SPOFs) and meets the high reliability and stability requirements of enterprises in different scenarios.
Deployment and flexible resource management
Bastionhost provides the resource orchestration capability based on the flexibility of cloud-native architecture, which allows you to deploy resources with a few clicks. This frees you from the complex physical deployment of traditional bastion hosts. You can instantly activate your bastion host and dynamically configure resource specifications, bandwidth capacity, and storage space as needed. This implements quick resource scaling and cost-optimization, allowing you to release idle resources during off-peak hours to reduce O&M costs and maximize resource utilization.
Easy to use with a few clicks
Administrators need to only complete feature configurations on the website to manage full-link data and detect and handle risks on an intuitive graphic user interface (GUI). Bastionhost provides multiple editions, including Basic Edition, Enterprise Edition, and SM Edition, based on enterprise best practices. This helps you flexibly adapt to different business scenarios. You can select an edition and configure key parameters based on your workloads and requirements. This way, you can accurately match security policies and cost investment to maximize Bastionhost performance.
Global deployment
Combined with Alibaba Cloud global data center infrastructure, Bastionhost can be deployed in global regions, such as Asia Pacific, Americas, Europe, and Middle East. Bastionhost provides an English web UI and has accumulated international use cases and solutions. It supports two-factor authentication by using mobile phone numbers from different countries and can be integrated with enterprise identity authentication systems outside China. This creates best practices for cross-border access to Bastionhost, ensuring secure O&M of your assets worldwide.