Tested in sandbox
- IPv4 - Static - Standard - Global:
Error during the selection in the interface - A Global Tier PublicIPAddress cannot be attached to Bastions.
- IPv4 - Static - Standard - Regional:
OK
- IPv4 - Static - Basic - Regional
Error during the selection in the interface - Static public IP addresses cannot be associated.
- IPv4 - Dynamic - Basic - Regional
Error during the selection in the interface - The SKU type for the public IP address does not match the SKU type of the load balancer (?? I don't know why this message).
- IPv6 - Static - Standard - Regional:
Error during deployment (The selected IPv6 public IP address is not supported for Azure Bastion. To fix this, please recreate your Azure Bastion with an IPv4 public IP address. (Code: PublicIpAddressVersionNotSupported))
Global tier: (Standard) Supported via cross-region load balancers.
https://learn.microsoft.com/en-us/azure/virtual-network/ip-services/public-ip-addresses#sku
Got this q on my test, answered B, got 100%
I am not sure what you tested but that's not correct. You cannot use Global PiPs, it has to be a Regional one.
https://learn.microsoft.com/en-us/azure/virtual-network/ip-services/configure-public-ip-bastion
The answer is correct: B
Azure Bastion supports standard SKU public IP addresses:
https://learn.microsoft.com/en-us/azure/virtual-network/ip-services/configure-public-ip-bastion
From your link : "Public IP addresses are available in two SKUs; standard, and basic. The selection of SKU determines the features of the IP address. The SKU determines the resources that the IP address can be associated with." - Can a BASIC Bastion support STANDARD IPs ?
This link has it clarified - https://learn.microsoft.com/en-us/azure/bastion/configuration-settings - Bastion whether its basic or standard requires Standard Public IPs which are static.
At the moment of writing this comment (14-01-2025) . The answer "A" is correct . The reason for mentioning the date's as MS documentation changes overtime.
To save your time below are MS article for reference to arrive at this answer.
- Search for following keyword in below MS link "Azure Bastion supports standard SKU public IP addresses"
Reference : https://learn.microsoft.com/en-us/azure/virtual-network/ip-services/configure-public-ip-bastion
- Public IP address for Global tier range in Standard SKU is currently available only for "cross-region load balancers."
Search for following keyword in below MS link "Supported via cross-region load balancers."
https://learn.microsoft.com/en-us/azure/virtual-network/ip-services/public-ip-addresses
Azure Bastion deployments require a Public IP address. The Public IP must have the following configuration:
• The Public IP address SKU must be Standard.
• The Public IP address assignment/allocation method must be Static.
https://learn.microsoft.com/en-us/azure/bastion/configuration-settings#public-ip
chatgpt:
The correct option is:
A. IP1 only
Explanation: Azure Bastion requires a Standard SKU public IP address, and the public IP address must be static and regional.
Looking at the provided table:
IP1: Standard SKU, regional, static (meets all the requirements for Azure Bastion Basic SKU).
IP2: Standard SKU, global, static (global tier is not supported for Bastion, only regional tier is allowed).
in my opinion:
You have five Azure virtual machines that run Windows Server 2016. The virtual machines are configured as web servers.
You have an Azure load balancer named LB1 that provides load balancing services for the virtual machines.
You need to ensure that visitors are serviced by the same web server for each request.
What should you configure?
A. Floating IP (direct server return) to Enabled
B. Session persistence to Client IP
C. Protocol to UDP
D. Idle Time-out (minutes) to 20
The Public IP address SKU must be Standard.
The Public IP address assignment/allocation method must be Static.
The Public IP address name is the resource name by which you want to refer to this public IP address.
You can choose to use a public IP address that you already created, as long as it meets the criteria required by Azure Bastion and isn't already in use.
https://learn.microsoft.com/en-us/azure/bastion/configuration-settings#:~:text=When%20you%20configure%20Azure%20Bastion%20using%20the%20Basic%20SKU%2C%20two,This%20is%20called%20host%20scaling.
Azure Bastion Basic SKU does NOT support Global Tier IPs.
Standard: "Supported via cross-region load balancers."
https://learn.microsoft.com/en-us/azure/virtual-network/ip-services/public-ip-addresses#sku
I tested in my lab and you cannot use dynamic IP addresses, basic SKU, or the Global. If you try to associate a Bastion with a Global Public IP you will get "Cannot be associated with this Bastion.
Correct answer: A
Answer should be IP1
bastion be it standard or basic SKU only supports regional tier meaning if you have Vnets in 3 regions then you need to deploy 3 bastions one for every region, however if you have those Vnets peered then you can have one bastion service deployed and it can reach VMs in other regions.
Bastion must have static IP either private or public; to use public IP you must have Standard SKU, private ip is mainly used for developers.
https://learn.microsoft.com/en-us/azure/virtual-network/ip-services/configure-public-ip-bastion
Answer is B.
The Public IP address SKU must be Standard.
The Public IP address assignment/allocation method must be Static.
The Public IP address name is the resource name by which you want to refer to this public IP address.
You can choose to use a public IP address that you already created, as long as it meets the criteria required by Azure Bastion and isn't already in use.
https://learn.microsoft.com/en-us/azure/bastion/configuration-settings
Global tier: (Standard) Supported via cross-region load balancers.
https://learn.microsoft.com/en-us/azure/virtual-network/ip-services/public-ip-addresses#sku
Got this q on my test, answered B, got 100%
The Public IP address SKU must be Standard.
The Public IP address assignment/allocation method must be Static.
The Public IP address name is the resource name by which you want to refer to this public IP address.
You can choose to use a public IP address that you already created, as long as it meets the criteria required by Azure Bastion and isn't already in use.
https://learn.microsoft.com/en-us/azure/bastion/configuration-settings
Prerequisites
An Azure account with an active subscription.
One standard SKU public IP address in your subscription. The IP address can't be associated with any resources.
https://learn.microsoft.com/en-us/azure/virtual-network/ip-services/configure-public-ip-bastion
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
eliasalg
Highly Voted 1 year, 7 months agoHillah
1 year, 4 months agoMentalTree
1 year, 2 months ago[Removed]
1 year, 2 months agojuhanj
2 months agojupi17
Highly Voted 1 year, 10 months agoxRiot007
1 year, 9 months agoamkaz104
1 year, 8 months agoThor0007
Most Recent 1 month, 2 weeks agoDonny_575
2 months, 3 weeks ago0378d43
4 months, 2 weeks ago[Removed]
5 months ago117b84e
5 months, 2 weeks agoCheMetto
7 months, 1 week agoblejzer2
7 months, 2 weeks agoWeepingMaplte
9 months, 2 weeks agobobothewiseman
11 months, 2 weeks agobobothewiseman
11 months, 2 weeks agoMatAlves
1 year ago[Removed]
1 year, 2 months agoAliNadheer
1 year, 2 months agoCHOKRIBS88
1 year, 3 months agoMentalTree
1 year, 2 months ago[Removed]
1 year, 3 months agoAhkhan
1 year, 3 months ago