From the course: Microsoft Azure Administrator (AZ-104) Cert Prep: 4 Configure and Manage Virtual Networking
Join today to access over 23,200 courses taught by industry experts.
Implement Azure Bastion - Azure Tutorial
From the course: Microsoft Azure Administrator (AZ-104) Cert Prep: 4 Configure and Manage Virtual Networking
Implement Azure Bastion
Azure Bastion is a service that permits secure admin connections to your VMs. It's a virtual appliance that you deploy on a VNet and it acts like a jump host. What that allows is for people outside of Azure to connect through Azure Bastion to a VM that's deployed in Azure on a VNet. This eliminates the need for public APIs on VMs. So if you have VMs deployed to Azure and they don't need to have a public IP address, but you put one there just so you could connect to it over RDP, then you could remove that public IP and access the VM through Azure Bastion Service. This also works for peered VNets, so you might just need one Azure Bastion Service set up to potentially connect to any VM that you have deployed in Azure. To set this up, you need to have a subnet on a VNet and it must be called Azure Bastion Subnet. So create a new empty subnet called Azure Bastion Subnet. It needs to have a network prefix that's 27 bits or smaller. You then assign a public IP to Bastion so that you can…
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.