Networking
The Networking forum covers all aspects of Networking in Azure, including endpoints, load-balancing, network security, DNS, Traffic Manager, virtual networks, and external connectivity.
Virtual Network:
Traffic Manager:
Network Watcher:
If you have any feedback on any aspect of Azure relating to Networking, we’d love to hear it.
-
Bastion supporting vnet peering for Hub & Spoke design
Please allow us to deploy Bastion in Hub & Spoke vnet design. It makes sense to deploy Bastion in Hub vnet only. Than we can access VMs in spoke vnets from Bastion. Hub & Spoke design is Azure recommended Reference architecture, make sense to support it.
1,096 votesHi JJ,
We are currently planning for this!
Allegra [MSFT] -
Allow file transfer to Azure Bastion sessions
Not being able to transfer files to a VM using a Bastion session really limits the usability. Please enable this feature.
656 votes -
AAD Integration
Integrate with AAD for authenticating directly with AAD joined Azure VMs.
174 votes -
Recording Bastion sessions
For some legal reasons, it can be useful and/or necessary to have RDP / SSH sessions recorded for later checks. Please have such feature added to Bastion roadmap.
168 votes -
Allow access to VMs via Azure Bastion with an RDP client
Currently in Azure, we host various environments with Windows VMs. For secure access to these environments, we utilize the Remote Desktop Gateway functionality in Windows Server along with licensed CALs and configure clients to use the Remote Desktop Gateway to get into VMs inside the VNet
It would be amazing if Azure Bastion could be configured to allow connections through the Bastion using RDP clients via the RD Gateway protocol. This would allow us to stop buying CALs, stop running RDGW VMs, but still allow us to utilize our third party RDP clients that automate credential rotation and maintenance of…
156 votes -
Azure Bastion - Support of MFA
We would love to use Azure Bastion immediately but unfortunately our internal security requirements does only allow access to services without strong authentication mechanism.
Is there already a fixed timeline when Multi-Factor Authentication will be supported?144 votes -
Restrict Azure Bastion copy and paste by policy
The Public Preview of the Bastion host allows copy and paste to and from the target host to the browser session and then the local machine. There is a requirement to restrict this capability to help reduce data loss. Perhaps this could be by policy?
96 votesThanks for the valid suggestion. Your feedback is now open for the user community to upvote which allows us to effectively prioritize your request against our existing feature list and also gives us insight into the potential impact of implementing the suggested feature
-
Allow us to access bastion via Peers/VPN
Allow us to deploy Bastion Service to a central vnet and consume it over Peering or vNet to vNet VPNs. Lot's businesses are setting up Hub/Spoke models in Azure for Network segmentation and having to deploy a Bastion Service to each is cost prohibitive.
76 votesHello,
We are currently planning work on this feature!
Allegra [MSFT]
-
Azure Bastion - Support for native RDP/SSH clients
Currently it is only possible to access VMs with Azure Bastion using RDP/SSH directly through the browser.
I would be great if Azure Bastion would also support native RDP/SSH clients for that76 votes -
Add Bastion to Canada East region
When can we expect Bastion in Canada East region?
57 votes -
Bastion and JIT Access
Currently Bastion in Azure Portal doesn't work well with Security Center Just In Time (JIT) access. You need to go the RDP or SSH page 1st in order to request JIT for the private IP of the destination VM first and then go back to Bastion to make the connection. In addition, when you request JIT on private IP it adds a NSG rule to allow entire VNet. Can we please have JIT support on Bastion page and allow only the Bastion subnet.
54 votes -
Allow Azure Bastion to Connect to VMS in a Peered Virtual Netowrk
I have been testing the Azure Bastion preview, and so far the product has been great.
I would like the ability to configure a bastion to connect to Hosts in a peered Virtual network though, rather than configuring multiple Bastion instances, even if this was only for Virtual networks in the same region it would be great. This would be helpful to reduce the need for one Bastion per VNet to one per region in instances where there are multiple Vnets configured
53 votes -
Scale and pause Azure Bastion for cost containment
Scale and pause Azure Bastion for cost containment, or apply consumption or transfer-based pricing model. The service is not required if virtual machines are stopped in the subscription. A standard jumpbox can be stopped.
42 votes -
Main site with list of VM's that you can access through Bastion
When using URL of Bastion, after authentication, there should be site with list of all VM accessible with Bastion with option to enter credentials or use those from Azure.
32 votes -
Azure Bastion use multi screen monitor (two or more)
As I se RDP with my two screens, I would like to have the same feature with the Azure Bastion to use the to use my two screen monitor.
30 votes -
Allow background images for Azure Bastion.
Having a number of different servers to manage, we normally use bginfo to let the desktop background help us identify what server, which user and the current state of the server. Bastion does not at the present time show background images - adding this feature would be extremely helpful.
Another useful feature would be to add the servername to the browser tab, instead of having some really unuseful naming of the tab.
30 votes -
enable Bastion users to select either RDP or SSH for connecting to Linux VM
Currently the Bastion service only lets you connect to a Linux VM using SSH. It would be nice if one could use Bastion to connect using RDP protocol as well, assuming xRDP was enabled and the port was opened to the Linux VM.
27 votes -
It will be good to share files via Azure Bastion
Right now file share is not supported via Azure Bastion which limits the type of work a person can perform on the server via bastion.
26 votes -
Ability to Disable Clipboard for Complaince
For compliance reasons, when dealing with sensitive data, we need the ability to disable the Clipboard.
22 votes -
Allow Bastion service connect to Linux VMs over 3389 RDP
From Azure portal allow Bastion service to connect to Linux VMs over 3389 RDP session as well if xrdp11 or other RDP services are installed and running on Linux VM.
20 votesThanks for the valid suggestion. Your feedback is now open for the user community to upvote which allows us to effectively prioritize your request against our existing feature list and also gives us insight into the potential impact of implementing the suggested feature
- Don't see your idea?