Forum Discussion
Monitoring traffic to and from private endpoints
looking to see what IP's are connecting (or attempting) to connect to a PaaS resource on a private endpoint. have tried virtual flow logs, but does not appear to show anything. any tips?
Referring on below:
- Network Security Group (NSG) Flow Logs: Ensure that NSG flow logs are enabled for the network security groups (NSGs) associated with your PaaS resources. NSG flow logs can capture information about IP addresses attempting to connect to your resources.
- Azure Monitor Logs: Use Azure Monitor Logs to collect and analyze logs from your PaaS resources. You can set up log queries to filter and view IP addresses connecting to your resources.
- Azure Private Link: If you're using Azure Private Link, ensure that the private endpoint is correctly configured and that traffic is routed through the private endpoint. You can use Azure Monitor to view logs and analyze traffic patterns.
- Azure Firewall: If you have Azure Firewall deployed, you can use its logging capabilities to monitor traffic to and from your PaaS resources. Azure Firewall logs can provide detailed information about IP addresses and connection attempts.
- Custom Log Analytics Queries: Create custom log analytics queries to filter and analyze the data collected by Azure Monitor Logs. You can use Kusto Query Language (KQL) to build queries that specifically look for IP addresses connecting to your PaaS resources.
