NSG Flow logs - IPs used while connecting to VM using Bastion service

Senthilnath 211 Reputation points

I use Azure Bastion service to connect my Azure VMs.
The NSG flow logs query lists a set of Outbound connections (Allowed) on the VMs IP address.
While tracing the public IP, they are from : Microsoft Azure, Akamai technologies, Netrouting, QUALYS.

Connecting to VMs using Bastion service use the above organizations IPs?

Azure Bastion
Azure Bastion
An Azure service that provides private and fully managed Remote Desktop Protocol (RDP) and Secure Shell (SSH) access to virtual machines.
198 questions
Azure Network Watcher
Azure Network Watcher
An Azure service that is used to monitor, diagnose, and gain insights into network performance and health.
120 questions
{count} votes

Accepted answer
  1. GitaraniSharma-MSFT 32,811 Reputation points Microsoft Employee

    Hello @Senthilnath ,

    Thank you for the information.

    I checked with the backend team internally and they mentioned that at high level, Azure Bastion is a PaaS service and it does allow or connect to various services for its operations and security scan. These services can be deployed on Microsoft Azure or partner network which are needed for service function properly (simple example in this case would be DNS resolution using Akamai) but it would be difficult to validate without the deployment details.

    Hence, if you need deeper investigation, the backend team suggested to open a support ticket with all the details and questions. So if you have a support plan, I request you file a support ticket, else please do let us know, we will try and help you get a one-time free technical support.

    Kindly let us know if the above helps or you need further assistance on this issue.


    Please "Accept the answer" if the information helped you. This will help us and others in the community as well.

    0 comments No comments

0 additional answers

Sort by: Most helpful