Hi @Aaron Krytus ,
Welcome to the Microsoft Q&A Platform. Thank you for reaching out & I hope you are doing well.
I understand that you would like to understand more about NSG requirements for Azure Bastion Subnet.
I take it that the NSG you have shared is applied to the Bastion VNet
- I see you have allowed Inbound traffic for Bastion subnet already
- You can follow this document which clearly describes the NSG requirements (Which you have described)
- https://video2.skills-academy.com/en-us/azure/bastion/bastion-nsg?source=recommendations
- You should allow outbound traffic from Bastion Vnet to the target VM/VM's subnet (I see you had already done this)
- Along with this, you must allow traffic on the destination VMs from the Bastion subnet
Inbound Rules
Outbound Rules
Please feel free to let us know should you require more details.
Cheers,
Kapil
----------------------------------------------------------------------------------------------------------------
Please don’t forget to close the thread by clicking "Accept the answer" wherever the information provided helps you, as this can be beneficial to other community members.