bastion virtual network

remoteUser1 101 Reputation points
2020-09-20T21:55:35.843+00:00

Hello,
I follow the link below to create bastion:

https://learn.microsoft.com/en-us/azure/bastion/bastion-create-host-portal

for Virtual network, here is the settings:
Address range
10.1.0.0/16
Subnets
10.1.0.0/24

for Subnet*, don't know what to write.
based on the documentation,
Subnet: The subnet in your virtual network where the new Bastion host will be deployed. The subnet will be dedicated to the Bastion host and must be named as AzureBastionSubnet. This subnet must be at least /27 or larger.

I used 10.1.0.0/24 or AzureBastionSubnet. it is not allowed.

what input is expected?

Azure Virtual Network
Azure Virtual Network
An Azure networking service that is used to provision private networks and optionally to connect to on-premises datacenters.
2,139 questions
0 comments
Accepted answer
  1. Andreas Baumgarten 96,266 Reputation points MVP
    2020-09-20T22:04:21.497+00:00

    The subnet must be named "AzureBastionSubnet" (without the quotes).
    The subnet ip configuration should be /27 or larger (/27, /26, /25, /24, ...)

    Hope this helps.

    Regards
    Andreas Baumgarten

    (Please don't forget to Accept as answer if the reply is helpful)

    0 comments

1 additional answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. remoteUser1 101 Reputation points
    2020-09-20T22:13:27.603+00:00

    Andreas,
    thanks so much for the help.
    it works with your suggestion, bastion only accepts IP range 10.1.0/16, but the active directory domain ip falls in 10.0.2.0/24 rang, not sure if it will cause the problem to access from bastion to azure AD or not?

    0 comments