• Public
  • Public/Protected
  • All

Namespace CreateBastionDetails

The configuration details for a new bastion. A bastion provides secured, public access to target resources in the cloud that you cannot otherwise reach from the internet. A bastion resides in a public subnet and establishes the network infrastructure needed to connect a user to a target resource in a private subnet.



bastionType: string

The type of bastion. Use standard.

Optional clientCidrBlockAllowList

clientCidrBlockAllowList: Array<string>

A list of address ranges in CIDR notation that you want to allow to connect to sessions hosted by this bastion.


compartmentId: string

The unique identifier (OCID) of the compartment where the bastion is located.

Optional definedTags

definedTags: undefined | object

Defined tags for this resource. Each key is predefined and scoped to a namespace. Example: {\"foo-namespace\": {\"bar-key\": \"value\"}}

Optional freeformTags

freeformTags: undefined | object

Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. Example: {\"bar-key\": \"value\"}

Optional maxSessionTtlInSeconds

maxSessionTtlInSeconds: undefined | number

The maximum amount of time that any session on the bastion can remain active. Note: Numbers greater than Number.MAX_SAFE_INTEGER will result in rounding issues.

Optional name

name: undefined | string

The name of the bastion, which can't be changed after creation.

Optional phoneBookEntry

phoneBookEntry: undefined | string

The phonebook entry of the customer's team, which can't be changed after creation. Not applicable to standard bastions.

Optional staticJumpHostIpAddresses

staticJumpHostIpAddresses: Array<string>

A list of IP addresses of the hosts that the bastion has access to. Not applicable to standard bastions.


targetSubnetId: string

The unique identifier (OCID) of the subnet that the bastion connects to.