How Azure Bastion works in accessing VMs from coffee shop scenarios. If the Wifi router has compromised and run a sort of packet sniffing tool, will be administrative commands supplied through the session will be safe?

When keeping Azure Front Door backend, “Backend host header” empty then got error "404 Web Site not found.". When putting it back as xxxx.azurewebsites.net then working but redirecting to xxx.azurewebsites.net.

You are using the wrong CIDR.

If you are using 10.0.0.0/24 address space then use below for subnet.
10.0.0.0/26
10.0.0.64/26
10.0.0.128/26

Let me know if it works for you.

Cheers
Sakaldeep

It should work. happy to help with remote sessions.

Was not expecting copy paste from MS Doc. I am not sure you have understood the question.