Networking
The Networking forum covers all aspects of Networking in Azure, including endpoints, load-balancing, network security, DNS, Traffic Manager, virtual networks, and external connectivity.
Virtual Network:
Traffic Manager:
Network Watcher:
If you have any feedback on any aspect of Azure relating to Networking, we’d love to hear it.
-
Bastion supporting vnet peering for Hub & Spoke design
Please allow us to deploy Bastion in Hub & Spoke vnet design. It makes sense to deploy Bastion in Hub vnet only. Than we can access VMs in spoke vnets from Bastion. Hub & Spoke design is Azure recommended Reference architecture, make sense to support it.
576 votesHi JJ,
We are currently planning for this!
Allegra [MSFT] -
Allow file transfer to Azure Bastion sessions
Not being able to transfer files to a VM using a Bastion session really limits the usability. Please enable this feature.
267 votes -
Restrict Azure Bastion copy and paste by policy
The Public Preview of the Bastion host allows copy and paste to and from the target host to the browser session and then the local machine. There is a requirement to restrict this capability to help reduce data loss. Perhaps this could be by policy?
64 votesThanks for the valid suggestion. Your feedback is now open for the user community to upvote which allows us to effectively prioritize your request against our existing feature list and also gives us insight into the potential impact of implementing the suggested feature
-
Recording Bastion sessions
For some legal reasons, it can be useful and/or necessary to have RDP / SSH sessions recorded for later checks. Please have such feature added to Bastion roadmap.
64 votes -
AAD Integration
Integrate with AAD for authenticating directly with AAD joined Azure VMs.
51 votes -
Allow us to access bastion via Peers/VPN
Allow us to deploy Bastion Service to a central vnet and consume it over Peering or vNet to vNet VPNs. Lot's businesses are setting up Hub/Spoke models in Azure for Network segmentation and having to deploy a Bastion Service to each is cost prohibitive.
31 votesHello,
We are currently planning work on this feature!
Allegra [MSFT]
-
Allow access to VMs via Azure Bastion with an RDP client
Currently in Azure, we host various environments with Windows VMs. For secure access to these environments, we utilize the Remote Desktop Gateway functionality in Windows Server along with licensed CALs and configure clients to use the Remote Desktop Gateway to get into VMs inside the VNet
It would be amazing if Azure Bastion could be configured to allow connections through the Bastion using RDP clients via the RD Gateway protocol. This would allow us to stop buying CALs, stop running RDGW VMs, but still allow us to utilize our third party RDP clients that automate credential rotation and maintenance of…
28 votes -
Azure Bastion - Support of MFA
We would love to use Azure Bastion immediately but unfortunately our internal security requirements does only allow access to services without strong authentication mechanism.
Is there already a fixed timeline when Multi-Factor Authentication will be supported?24 votes -
Bastion and JIT Access
Currently Bastion in Azure Portal doesn't work well with Security Center Just In Time (JIT) access. You need to go the RDP or SSH page 1st in order to request JIT for the private IP of the destination VM first and then go back to Bastion to make the connection. In addition, when you request JIT on private IP it adds a NSG rule to allow entire VNet. Can we please have JIT support on Bastion page and allow only the Bastion subnet.
21 votes -
Azure Bastion - Support for native RDP/SSH clients
Currently it is only possible to access VMs with Azure Bastion using RDP/SSH directly through the browser.
I would be great if Azure Bastion would also support native RDP/SSH clients for that21 votes -
Allow Azure Bastion to Connect to VMS in a Peered Virtual Netowrk
I have been testing the Azure Bastion preview, and so far the product has been great.
I would like the ability to configure a bastion to connect to Hosts in a peered Virtual network though, rather than configuring multiple Bastion instances, even if this was only for Virtual networks in the same region it would be great. This would be helpful to reduce the need for one Bastion per VNet to one per region in instances where there are multiple Vnets configured
20 votes -
Main site with list of VM's that you can access through Bastion
When using URL of Bastion, after authentication, there should be site with list of all VM accessible with Bastion with option to enter credentials or use those from Azure.
16 votes -
Allow background images for Azure Bastion.
Having a number of different servers to manage, we normally use bginfo to let the desktop background help us identify what server, which user and the current state of the server. Bastion does not at the present time show background images - adding this feature would be extremely helpful.
Another useful feature would be to add the servername to the browser tab, instead of having some really unuseful naming of the tab.
13 votes -
Pin Bastion RDP to Dashboard
Pin Bastion Host shortcuts for remote access to VMs from a Dashboard, link directly to certain VM direct to the login page for bastion on that vm
10 votes -
It will be good to share files via Azure Bastion
Right now file share is not supported via Azure Bastion which limits the type of work a person can perform on the server via bastion.
10 votes -
Ability to Disable Clipboard for Complaince
For compliance reasons, when dealing with sensitive data, we need the ability to disable the Clipboard.
8 votes -
enable Bastion users to select either RDP or SSH for connecting to Linux VM
Currently the Bastion service only lets you connect to a Linux VM using SSH. It would be nice if one could use Bastion to connect using RDP protocol as well, assuming xRDP was enabled and the port was opened to the Linux VM.
7 votes -
Allow Bastion service connect to Linux VMs over 3389 RDP
From Azure portal allow Bastion service to connect to Linux VMs over 3389 RDP session as well if xrdp11 or other RDP services are installed and running on Linux VM.
6 votesThanks for the valid suggestion. Your feedback is now open for the user community to upvote which allows us to effectively prioritize your request against our existing feature list and also gives us insight into the potential impact of implementing the suggested feature
-
Integrate Bastion with Admin Center (Honolulu)
Integrate Bastion with Admin Center (Honolulu) so you can view site through Bastion
3 votes -
Azure Bastion recording enhancements
- Add option to record keystrokes
- Automatically block execution of defined commands like "format c:" or "rm -rf"
- Use ML to analyze remotely work from security perspective
3 votes
- Don't see your idea?