A bastion host is a computer system that is exposed to attack, and may be a critical component in a network security system. Special attention must be paid to these highly fortified hosts, both during initial construction and ongoing operation. This paper presents a methodology for building a bastion host using HP-UX 11. While the principles and procedures can be applied to other HP-UX versions as well as other Unix variants, the focus is on HP-UX 11.
Download the paper in RTF format here.