Firewall
On 2024-12-18, the university requested that we move bastion to behind the firewall due to general security concerns. This means that users without access to the UWaterloo campus or VPN will no longer be able to access the cluster. We are working with the university to find a solution to this problem. In the meantime, materials regarding accessing the bastion host from off-campus are invalid.
The WATcloud compute cluster is housed at the University of Waterloo. All machines in the cluster are behind the University's firewall. In order to connect to the cluster, you must be on the campus network, connected to the University's VPN (opens in a new tab), or use a Bastion as a jump host.
Bastion
A Bastion (or "Bastion Host") is a machine that is exposed to the internet and is used as a gateway to access other machines that are behind a firewall1. At WATcloud, we host a Bastion that you can use to connect to the cluster.
VPN
A VPN (or "Virtual Private Network") is a service that allows you to connect to a private network over the internet. The University of Waterloo provides a VPN (opens in a new tab) service that allows you to connect to the campus network from anywhere in the world. Once you are on the UWaterloo VPN, you can connect to the WATcloud compute cluster as if you were on campus.
Footnotes
-
See the Wikipedia page (opens in a new tab) for more information. ↩