stackoom
  简体   繁体   中英

Azure Bastion for Hybrid Cloud Environment

 原文  2019-12-25 21:37:46       azure/ cloud/ vpn/ azure-vpn/ hybrid-cloud

Question

Is there any way to use Azure Bastion to connect to on-prem systems as well as Azure virtual machines? I have a hybrid cloud environment where some key machines are on-prem and some are Azure VMs. The Azure VNet is extended with a VPN tunnel so the azure VMs can talk to the on-prem machines. In Googling my question, I was not able to find much...

  • The official page for Azure Bastion describes it as '''Azure Bastion is provisioned directly in your Virtual Network (VNet) and supports all VMs in your Virtual Network (VNet)'''
  • This page talks about hybrid envrionments https://blog.ahasayen.com/introducing-azure-bastion/ , saying: '''You might also have some sort of hybrid connectivity with your on-premises network and when you are outside the office, you use point to site VPN to securely access your VNET, which is the ideal situation.'"
  • I am aware of Azure Arc which is currently in preview. Would something like that be appropriate to make this work?

My overall questions are:

  • Am I totally barking up the wrong tree here? Is my understanding off?
  • Is it possible to use Azure Bastion to access an on-prem server on an extended VNet?

Thanks in advance!

2 answers

solution1
 1 ACCPTED  2019-12-26 06:13:49

As far as I know, currently, it's not possible to use Azure Bastion to access an on-prem server on an extended VNet. You only could use Azure Bastion to access all the VMs in the VNet which has AzureBastionSubnet. Refer to this blog

Azure Bastion resides on the same virtual network (VNet) as the servers accessed and only connects to one VNet.

Actually, you can have a private and securely RDP/SSH connection between your on-premise server and Azure VM via a VPN gateway, you just can not RDP/SSH on-premise server via Azure portal. If you need this feature with Azure Bastion, it's welcome to give feedback or upvote these similar feedback1 and feedback2 .

Hope this could help you.

solution2
 0  2022-08-02 05:04:00

This is now possible via the new capabilities introduced in Azure Bastion Standard Tier.

https://docs.microsoft.com/en-us/azure/bastion/connect-ip-address

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question What is difference between Azure Cloud Shell Vs Bastion? Migrate from Hybrid Azure AD to Full Cloud How to configure Eucalyptus for hybrid Cloud with Azure or AWS Azure Bastion into Existing Vnet Cloud environment on Windows Azure platform Image management in azure cloud environment Azure bastion failing to connect to VM Single self-service portal for Azure hybrid cloud Does Azure Bastion with AAD Credentials Application Environment is not set correctly LAMP Azure Cloud
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM