Microsoft Azure (AZ-104): Network Watcher
Azure Network Watcher provides tools to monitor, diagnose, view metrics, and enable or disable logs for resources in an Azure virtual network.
Network Watcher is a regional service and can only be ran against resources in the same region.
Some of the features available under Network Watcher are:
- IP Watcher
IP flow verify checks if a packet is allowed or denied to or from a virtual machine.
The information consists of direction, protocol, local IP, remote IP, local port, and remote port.
If the packet is denied by a security group, the name of the rule that denied the packet is returned. While any source or destination IP can be chosen, IP flow verify helps administrators quickly diagnose connectivity issues from or to the internet and from or to the on-premises environment.
2. Variable Packet Capture
This feature allows you to create packet capture sessions to track traffic to and from a virtual machine which is useful for:
- Diagnose network anomalies
- Gather network statistics
- Gain information on network intrusions
- Debug client-server communications
3. Connection Monitor
This feature allows you to find out if there is an outbound connectivity between an Azure machine and external host.
4. NSG Flows
We can use this feature to log network traffic to and from a virtual machine.
