Enhancements to NSG flow logs for Azure Network Watcher
Posted on Friday, November 16, 2018
We're excited to announce enhancements to network security group (NSG) flow logs for Azure Network Watcher. These enhancements are available in version 2 of the logs. They include per-flow throughput statistics, so you can understand flow session state and the associated number of bytes and packets transferred.
The version 2 configuration of NSG flow logs is currently available only via the Azure portal and REST API in the West Central US region. We are in the process of rolling out these changes to all Azure regions. There will be no impact to existing NSG flow logs or Traffic Analytics customers.
For more information about NSG flow logs, see the product documentation.
See related feedback from Azure customers
Packet and Byte Count in NSG Flow Logs completed
Adding packet and byte count to NSG flow logs would give it parity with a number of netFlow analysis tools. Analyzing flows by data transferred is much more useful than counting flows and provides much better insight into the network. While WireData may provide this additional data it is (1) not available everywhere, (2) provides data redundant to NSG Flow, and (3) requires agent to get the necessary data.Dave Medvitz