Question

You have an Azure subscription that contains the following fully peered virtual networks: VNet1, located in the West US region. 5 virtual machines are connected to VNet1. VNet2, located in the West US region. 7 virtual machines are connected to VNet2. VNet3, located in the East US region, 10 virtual machines are connected to VNet3. VNet4, located in the East US region, 4 virtual machines are connected to VNet4. You plan to protect all of the connected virtual machines by using Azure Bastion. What is the minimum number of Azure Bastion hosts that you must deploy? Select only one answer. 1 2 3 4

Answer 1

To protect all the connected virtual machines with Azure Bastion, the minimum number of Azure Bastion hosts that you must deploy is 2.

Step-by-step explanation:

Azure Bastion provides secure and seamless RDP and SSH access to virtual machines directly through the Azure portal, eliminating the need to expose them to the public internet. Each Azure Bastion host provides connectivity to virtual machines within a single virtual network.

In this scenario, you have four virtual networks (VNet1, VNet2, VNet3, and VNet4) located in two different regions (West US and East US). Since VNet1 and VNet2 are in the same region (West US), you can deploy one Azure Bastion host in that region to provide access to the 12 virtual machines (5 in VNet1 and 7 in VNet2).

For VNet3 and VNet4, which are located in the East US region, you would need another Azure Bastion host to provide access to the 14 virtual machines (10 in VNet3 and 4 in VNet4).

Therefore, the minimum number of Azure Bastion hosts required is 2, with one host deployed in the West US region and another host deployed in the East US region.