Azure Day 1 - Bastion host
The Bastion host is deployed in the virtual network.
The user connects to the Azure portal using any HTML5 browser.
The user selects the virtual machine to connect to.
With a single click, the RDP/SSH session opens in the browser.
Key features:
- Connect your RDP and SSH sessions directly in the Azure Portal using a single click experience
- Log into your Azure virtual machines and avoid public Internet exposure using SSH and RDP with private IP addresses only
- Integrate and traverse existing firewalls and security perimeter using a modern HTML5 based web client and standard SSL ports
- Use your SSH keys for authentication when logging into your Azure virtual machines
- No Public IP required on the Azure VM: Azure Bastion opens the RDP/SSH connection to your Azure virtual machine using private IP on your VM. You don't need a public IP on your virtual machine.
- No hassle of managing NSGs
- Protection against port scanning: Because you do not need to expose your virtual machines to public Internet, your VMs are protected against port scanning by rogue and malicious users located outside your virtual network.
- Protect against zero-day exploits. Hardening in one place only: Azure Bastion is a fully platform-managed PaaS service. Because it sits at the perimeter of your virtual network, you don’t need to worry about hardening each of the virtual machines in your virtual network. The Azure platform protects against zero-day exploits by keeping the Azure Bastion hardened and always up-to-date for you.
Azure Collections
Comments
Post a Comment