Consumers of commercial cloud Infrastructure-as-a-Service solutions need methods to manage their cloud-based assets. One method employs Bastion Hosts – secure jump boxes that provide remote access to your environment while limiting attack surface. I’ve typically employed a Linux VM for this task, hardened and configured for the single purpose of accessing the environment via ssh. Azure now has in preview the Azure Bastion. It is positioned as a Platform-as-a-Service (PaaS) resource for securely accessing virtual machines in your Azure environment. Let’s take a look at deployment and usage of Azure Bastion (preview) and compare to roll-your-own Linux server bastion hosts.
The Azure Portal provides search capability allowing quick review and selection of a desired VM image. But when deploying via the Azure CLI or template you must know some parameters to specify the image to be deployed. This post provides a few examples showing how to search the image listing via the Azure CLI.