Azure Bastion<\/strong><\/span><\/p>\n Azure Bastion<\/a> is a fully managed PaaS service that provides secure and seamless RDP and SSH access to your virtual machines directly through the Azure Portal. Azure Bastion is provisioned directly in your Virtual Network (VNet) and supports all VMs in your Virtual Network (VNet) using SSL without any exposure through public IP addresses.<\/p>\n Using a bastion host can help limit threats such as port scanning and other types of malware targeting your VMs. Azure Bastion provides an integrated platform alternative to manually deploying and managing jump servers to shield your virtual machines.<\/p>\n Azure Bastion deployment architecture: (1) The Bastion host is deployed in the virtual network. (2) The user connects to the Azure portal using any HTML5 browser. (3) The user selects the virtual machine to connect to. (4) With a single click, the RDP\/SSH session opens in the browser. (5) No public IP is required on the Azure VM.<\/span><\/em><\/p>\n Azure Bastion resources<\/strong><\/p>\n Azure Private Link<\/span><\/strong><\/p>\n Azure Private Link<\/a> provides private connectivity from a virtual network to Azure platform as a service (PaaS), customer-owned, or Microsoft partner services. It simplifies the network architecture and secures the connection between endpoints in Azure by eliminating data exposure to the public internet.<\/p>\n Access private endpoints over private peering or VPN tunnels from on-premises or peered virtual networks. Microsoft hosts the traffic, so you don\u2019t need to set up public peering or use the internet to migrate your workloads to the cloud.<\/span><\/em><\/p>\n Azure Private Link resources<\/strong><\/p>\n Azure Front Door<\/strong><\/p>\n Azure Front Door<\/a> provides a scalable and secure entry point for fast delivery of your global applications Flexibly route your users to the closest available backend, with instant failover for changes in availability or on-the-path performance. Front Door supports different load balancing algorithms including round-robin, weighted round-robin, active\/standby configurations, and cookie-based session affinity.<\/p>\n Azure Front Door resources<\/strong><\/p>\n Azure Content Delivery Network<\/span><\/strong><\/p>\n In online content delivery, user experience is everything. Azure Content Delivery Network (CDN)<\/a> lets you reduce load times, save bandwidth, and speed responsiveness\u2014whether you\u2019re developing or managing websites or mobile apps, or encoding and distributing streaming media, gaming software, firmware updates, or IoT endpoints.<\/p>\n Azure CDN offers developers a global solution for rapidly delivering high-bandwidth content to users by caching their content at strategically placed physical nodes across the world. Azure CDN can also accelerate dynamic content, which cannot be cached, by leveraging various network optimizations using CDN point of presence (POP) locations.<\/p>\n Azure CDN resources<\/strong><\/p>\n Azure Virtual WAN<\/strong><\/span><\/p>\n Gain simple, unified, global connectivity and security with Azure Virtual WAN<\/a>.<\/p>\n Azure Virtual WAN is a networking service that provides optimized and automated branch connectivity to, and through, Azure. Azure regions serve as hubs that you can choose to connect your branches to. You can leverage the Azure backbone to also connect branches and enjoy branch-to-VNet connectivity. We have a list of partners that support connectivity automation with Azure Virtual WAN VPN. For more information, see the Virtual WAN partners and locations<\/a> article.<\/p>\n Azure Virtual WAN brings together many Azure cloud connectivity services such as site-to-site VPN, User VPN (point-to-site), and ExpressRoute into a single operational interface.<\/span><\/em><\/p>\n Azure Virtual WAN resources<\/strong><\/p>\n Azure Private DNS <\/strong><\/span><\/p>\n Azure Private DNS<\/a> provides a reliable, secure DNS service to manage and resolve domain names in a virtual network without the need to add a custom DNS solution. By using private DNS zones, you can use your own custom domain names rather than Azure-provided names. The records contained in a private DNS zone are not resolvable from the Internet. DNS resolution against a private DNS zone works only from virtual networks that are linked to it.<\/p>\n Azure Private DNS resources<\/strong><\/p>\n <\/p>\n","protected":false},"excerpt":{"rendered":" Improve connectivity and security with networking services that help you accelerate service delivery, optimize traffic and privacy, and shield VMs from common threats. New networking services in Azure Government include Azure Bastion, Azure Private Link, Azure Front Door, Azure Content Delivery Network, Azure Virtual WAN, and Azure DNS private zones. Learn more about these services […]<\/p>\n","protected":false},"author":1804,"featured_media":19209,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[1],"tags":[95,184,426],"class_list":["post-19202","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-azuregov","tag-azure-government","tag-cloud-strategy","tag-networking"],"acf":[],"blog_post_summary":" Improve connectivity and security with networking services that help you accelerate service delivery, optimize traffic and privacy, and shield VMs from common threats. New networking services in Azure Government include Azure Bastion, Azure Private Link, Azure Front Door, Azure Content Delivery Network, Azure Virtual WAN, and Azure DNS private zones. Learn more about these services […]<\/p>\n","_links":{"self":[{"href":"https:\/\/devblogs.microsoft.com\/azuregov\/wp-json\/wp\/v2\/posts\/19202","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/devblogs.microsoft.com\/azuregov\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/devblogs.microsoft.com\/azuregov\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/devblogs.microsoft.com\/azuregov\/wp-json\/wp\/v2\/users\/1804"}],"replies":[{"embeddable":true,"href":"https:\/\/devblogs.microsoft.com\/azuregov\/wp-json\/wp\/v2\/comments?post=19202"}],"version-history":[{"count":0,"href":"https:\/\/devblogs.microsoft.com\/azuregov\/wp-json\/wp\/v2\/posts\/19202\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/devblogs.microsoft.com\/azuregov\/wp-json\/wp\/v2\/media\/19209"}],"wp:attachment":[{"href":"https:\/\/devblogs.microsoft.com\/azuregov\/wp-json\/wp\/v2\/media?parent=19202"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/devblogs.microsoft.com\/azuregov\/wp-json\/wp\/v2\/categories?post=19202"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/devblogs.microsoft.com\/azuregov\/wp-json\/wp\/v2\/tags?post=19202"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}![\"Image](\"https:\/\/devblogs.microsoft.com\/azuregov\/wp-content\/uploads\/sites\/43\/2020\/03\/Networking-blog-image1-AzureBastion.png\")
<\/p>\n\n
![\"Image](\"https:\/\/devblogs.microsoft.com\/azuregov\/wp-content\/uploads\/sites\/43\/2020\/03\/Networking-blog-Image2-AzurePrivateLink.png\")
<\/p>\n\n
\n
\n
![\"Image](\"https:\/\/devblogs.microsoft.com\/azuregov\/wp-content\/uploads\/sites\/43\/2020\/03\/Networking-blog-Image3-AzureVirtualWan.png\")
<\/p>\n\n
\n