Azure Bastion
An Azure service that provides private and fully managed Remote Desktop Protocol (RDP) and Secure Shell (SSH) access to virtual machines.
242 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(134.4, 59%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECM%3C/text%3E%3C/svg%3E)
Hello Mulagiripattu,
You can make your troubleshoowith the below list:
- Check VM State: Ensure that your virtual machine (VM) is in the Running state. You can verify this in the Azure portal.
- VM Type: Is your VM a Windows VM or a Linux VM? Knowing this will help us narrow down the troubleshooting steps.
- Public IP Assignment: Assign a public IP to your VM if it doesn’t already have one. Also, make sure the Network Security Group (NSG) associated with the VM allows traffic from the Bastion subnet.
- Private IP Connectivity: Can you access the VM from another VM in the same subnet using its private IP? This will help us determine if the issue is specific to Bastion.
- Bastion Subnet IP Ranges: Ensure that you are allowing IP ranges from the Bastion subnet in the destination VM’s NSG. This step is crucial for Bastion to function correctly.
- Port Configuration: depends on VM OS you need to verify if there are the rights port configuration.
- Bastion Provisioning State: Verify that the Bastion resource is in a succeeded state. If it’s not, there might be provisioning issues.
- Network Connectivity: Sometimes, a network connectivity issue between your web browser and Azure Bastion can cause problems. Check if your client’s Internet firewall is blocking WebSockets traffic or similar.
- Azure Network Watcher: You can diagnose network connectivity issues to your VM using Azure Network Watcher. Navigate to the Connection Troubleshoot tab (in the Monitoring section) of your Azure Bastion resource in the Azure portal.
If the issue persists, you can try using the Connection Troubleshoot feature in Azure Bastion to diagnose connectivity issues. To do this, navigate to the Connection Troubleshoot tab (in the Monitoring section) of your Azure Bastion resource in the Azure portal. Network Watcher Connection Troubleshoot provides the capability to check a direct TCP connection from a virtual machine (VM) to a VM, fully qualified domain name (FQDN), URI, or IPv4 address. To start, choose a source to start the connection from, and the destination you wish to connect to and select "Check". For more information, see Troubleshoot Azure Bastion.
References:
- Troubleshoot Azure Bastion
- https://learn.microsoft.com/en-us/answers/questions/1147745/not-able-to-connect-to-vm-using-bastion-service
Let me know if this information help you to address your question.
Luis