Networking
The Networking forum covers all aspects of Networking in Azure, including endpoints, load-balancing, network security, DNS, Traffic Manager, virtual networks, and external connectivity.
Virtual Network:
Traffic Manager:
Network Watcher:
If you have any feedback on any aspect of Azure relating to Networking, we’d love to hear it.
-
Bastion supporting vnet peering for Hub & Spoke design
Please allow us to deploy Bastion in Hub & Spoke vnet design. It makes sense to deploy Bastion in Hub vnet only. Than we can access VMs in spoke vnets from Bastion. Hub & Spoke design is Azure recommended Reference architecture, make sense to support it.
283 votesHi JJ,
We are currently planning for this!
Allegra [MSFT] -
Restrict Azure Bastion copy and paste by policy
The Public Preview of the Bastion host allows copy and paste to and from the target host to the browser session and then the local machine. There is a requirement to restrict this capability to help reduce data loss. Perhaps this could be by policy?
46 votesThanks for the valid suggestion. Your feedback is now open for the user community to upvote which allows us to effectively prioritize your request against our existing feature list and also gives us insight into the potential impact of implementing the suggested feature
-
Recording Bastion sessions
For some legal reasons, it can be useful and/or necessary to have RDP / SSH sessions recorded for later checks. Please have such feature added to Bastion roadmap.
18 votes -
AAD Integration
Integrate with AAD for authenticating directly with AAD joined Azure VMs.
10 votes -
Allow us to access bastion via Peers/VPN
Allow us to deploy Bastion Service to a central vnet and consume it over Peering or vNet to vNet VPNs. Lot's businesses are setting up Hub/Spoke models in Azure for Network segmentation and having to deploy a Bastion Service to each is cost prohibitive.
10 votesHello,
We are currently planning work on this feature!
Allegra [MSFT]
-
Allow file transfer to Azure Bastion sessions
Not being able to transfer files to a VM using a Bastion session really limits the usability. Please enable this feature.
9 votes -
Main site with list of VM's that you can access through Bastion
When using URL of Bastion, after authentication, there should be site with list of all VM accessible with Bastion with option to enter credentials or use those from Azure.
9 votes -
Ability to Disable Clipboard for Complaince
For compliance reasons, when dealing with sensitive data, we need the ability to disable the Clipboard.
5 votes -
Bastion and JIT Access
Currently Bastion in Azure Portal doesn't work well with Security Center Just In Time (JIT) access. You need to go the RDP or SSH page 1st in order to request JIT for the private IP of the destination VM first and then go back to Bastion to make the connection. In addition, when you request JIT on private IP it adds a NSG rule to allow entire VNet. Can we please have JIT support on Bastion page and allow only the Bastion subnet.
5 votes -
It will be good to share files via Azure Bastion
Right now file share is not supported via Azure Bastion which limits the type of work a person can perform on the server via bastion.
4 votes -
Allow Bastion service connect to Linux VMs over 3389 RDP
From Azure portal allow Bastion service to connect to Linux VMs over 3389 RDP session as well if xrdp11 or other RDP services are installed and running on Linux VM.
3 votesThanks for the valid suggestion. Your feedback is now open for the user community to upvote which allows us to effectively prioritize your request against our existing feature list and also gives us insight into the potential impact of implementing the suggested feature
-
Integrate Bastion with Admin Center (Honolulu)
Integrate Bastion with Admin Center (Honolulu) so you can view site through Bastion
3 votes -
Allow Azure Bastion to Connect to VMS in a Peered Virtual Netowrk
I have been testing the Azure Bastion preview, and so far the product has been great.
I would like the ability to configure a bastion to connect to Hosts in a peered Virtual network though, rather than configuring multiple Bastion instances, even if this was only for Virtual networks in the same region it would be great. This would be helpful to reduce the need for one Bastion per VNet to one per region in instances where there are multiple Vnets configured
3 votes -
Allow inbound 443 from the Internet to Bastion subnet
Hi Azure team,
Thanks for bring such great feature to us! :D
As per the https://docs.microsoft.com/en-us/azure/bastion/bastion-nsg and our own test.
We need to allow Inbound port 443 from Internet to the Bastion Subnet. From my understanding, the Bastion instance is only making connections from/to Azure portal. Is there any reason we need to open 443 to the Internet, instead of some tag like “AzureCloud”
Thanks,
Tim
2 votes -
Preview of Boot diagnostics
Boot diagnostics on some Bastion status page for available VM's
2 votes -
Waiting for reconnecting on machine restart
There should be an button to reconnect sesion on machine restart
2 votes -
Bastion - correct keyboard
Azure Bastion does not handle keyboards very well. With Norwegian keyboards we are using "Alt GR" to get symbols like @ (altGR-2). This works with RDP, but not with the new console (In Microsoft Edge).
1 vote -
1 vote
-
Bastion SSH Passsphrase displayed in browser
I don't believe this should be displayed as clear text in my browser
1 vote
- Don't see your idea?