Networking
The Networking forum covers all aspects of Networking in Azure, including endpoints, load-balancing, network security, DNS, Traffic Manager, virtual networks, and external connectivity.
Virtual Network:
Traffic Manager:
Network Watcher:
If you have any feedback on any aspect of Azure relating to Networking, we’d love to hear it.
-
Bastion supporting vnet peering for Hub & Spoke design
Please allow us to deploy Bastion in Hub & Spoke vnet design. It makes sense to deploy Bastion in Hub vnet only. Than we can access VMs in spoke vnets from Bastion. Hub & Spoke design is Azure recommended Reference architecture, make sense to support it.
1,620 votesHi JJ,
We are currently planning for this!
Allegra [MSFT] -
Allow file transfer to Azure Bastion sessions
Not being able to transfer files to a VM using a Bastion session really limits the usability. Please enable this feature.
1,096 votes -
AAD Integration
Integrate with AAD for authenticating directly with AAD joined Azure VMs.
378 votes -
Recording Bastion sessions
For some legal reasons, it can be useful and/or necessary to have RDP / SSH sessions recorded for later checks. Please have such feature added to Bastion roadmap.
358 votes -
Scale and pause Azure Bastion for cost containment
Scale and pause Azure Bastion for cost containment, or apply consumption or transfer-based pricing model. The service is not required if virtual machines are stopped in the subscription. A standard jumpbox can be stopped.
331 votes -
Azure Bastion - Support of MFA
We would love to use Azure Bastion immediately but unfortunately our internal security requirements does only allow access to services without strong authentication mechanism.
Is there already a fixed timeline when Multi-Factor Authentication will be supported?214 votes -
Azure Bastion - Support for native RDP/SSH clients
Currently it is only possible to access VMs with Azure Bastion using RDP/SSH directly through the browser.
I would be great if Azure Bastion would also support native RDP/SSH clients for that182 votes -
Restrict Azure Bastion copy and paste by policy
The Public Preview of the Bastion host allows copy and paste to and from the target host to the browser session and then the local machine. There is a requirement to restrict this capability to help reduce data loss. Perhaps this could be by policy?
137 votesThanks for the valid suggestion. Your feedback is now open for the user community to upvote which allows us to effectively prioritize your request against our existing feature list and also gives us insight into the potential impact of implementing the suggested feature
-
Allow us to access bastion via Peers/VPN
Allow us to deploy Bastion Service to a central vnet and consume it over Peering or vNet to vNet VPNs. Lot's businesses are setting up Hub/Spoke models in Azure for Network segmentation and having to deploy a Bastion Service to each is cost prohibitive.
109 votesHello,
We are currently planning work on this feature!
Allegra [MSFT]
-
Bastion and JIT Access
Currently Bastion in Azure Portal doesn't work well with Security Center Just In Time (JIT) access. You need to go the RDP or SSH page 1st in order to request JIT for the private IP of the destination VM first and then go back to Bastion to make the connection. In addition, when you request JIT on private IP it adds a NSG rule to allow entire VNet. Can we please have JIT support on Bastion page and allow only the Bastion subnet.
95 votes -
Azure Bastion use multi screen monitor (two or more)
As I se RDP with my two screens, I would like to have the same feature with the Azure Bastion to use the to use my two screen monitor.
89 votes -
Allow Azure Bastion to Connect to VMS in a Peered Virtual Netowrk
I have been testing the Azure Bastion preview, and so far the product has been great.
I would like the ability to configure a bastion to connect to Hosts in a peered Virtual network though, rather than configuring multiple Bastion instances, even if this was only for Virtual networks in the same region it would be great. This would be helpful to reduce the need for one Bastion per VNet to one per region in instances where there are multiple Vnets configured
77 votes -
Add Bastion to Canada East region
When can we expect Bastion in Canada East region?
60 votes -
Logging user's email address of the Azure portal on the Bastion diagnostics log
Some organizations/companies need information for detecting/tracking the person who used Bastion and logged into VM.
Current Bastion diagnostics log has fields for subscription ID and VM username, However, there is no field for Azure portal user's name or email address.
58 votes -
Allow background images for Azure Bastion.
Having a number of different servers to manage, we normally use bginfo to let the desktop background help us identify what server, which user and the current state of the server. Bastion does not at the present time show background images - adding this feature would be extremely helpful.
Another useful feature would be to add the servername to the browser tab, instead of having some really unuseful naming of the tab.
52 votes -
Allow Bastion service connect to Linux VMs over 3389 RDP
From Azure portal allow Bastion service to connect to Linux VMs over 3389 RDP session as well if xrdp11 or other RDP services are installed and running on Linux VM.
51 votesThanks for the valid suggestion. Your feedback is now open for the user community to upvote which allows us to effectively prioritize your request against our existing feature list and also gives us insight into the potential impact of implementing the suggested feature
-
Main site with list of VM's that you can access through Bastion
When using URL of Bastion, after authentication, there should be site with list of all VM accessible with Bastion with option to enter credentials or use those from Azure.
42 votes -
Direct Printing from the Bastion VM
Allow Bastion VM to read the local printers similar to RDP
39 votes -
It will be good to share files via Azure Bastion
Right now file share is not supported via Azure Bastion which limits the type of work a person can perform on the server via bastion.
38 votes -
Bastion shareable links
Make bastion shareable links accessible publicly.
On https://docs.microsoft.com/en-us/rest/api/virtualnetwork/putbastionshareablelink/putbastionshareablelink It does not specify that this is still in preview yet support has informed me this feature is still in preview. Because when I try to use it it just says my subscription does not have access to Microsoft.Network/bastionShareableLink when enabling this feature using Azure CLI it just ends up in a state of pending forever.35 votes
- Don't see your idea?