Skip to content

DevOps & Cloud Documentation

Bastion

yuva19102003/Docs

3️⃣ Azure Bastion¶

🔹 Definition¶

Azure Bastion enables secure SSH/RDP access without public IPs.

Browser-based access
No exposed ports (22/3389)
Zero-trust friendly

When to use¶

Secure admin access
No jump boxes
Production environments

🔧 Azure CLI (Basic)¶

az network bastion create \
  --resource-group rg-vnet-demo \
  --name bastion-host \
  --vnet-name vnet-main \
  --public-ip-address bastion-ip

🖥️ Azure Portal Flow¶

Portal → Bastion → Create
→ Select VNet
→ Create AzureBastionSubnet
→ Attach Public IP

📦 Example¶

Admin Browser → Bastion → Private VM

❌ No SSH exposed ❌ No RDP exposed