![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(304, 92%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EHT%3C/text%3E%3C/svg%3E)
Azure Application Gateway
An Azure service that provides a platform-managed, scalable, and highly available application delivery controller as a service.
1,082 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(214.4, 74%, 30%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAM%3C/text%3E%3C/svg%3E)
Harsh Thakor Welcome to Microsoft Q&A forum!
Incase if you haven't checked earlier about the Azure Monitor, please see the below information which will help you to start with it.
Azure Monitor is a monitoring service that provides metrics and logs for Azure resources, including Application Gateway. It collects data from different sources and provides a unified view of the monitored resources.
You can use Azure Log Analytics to examine the logs of the Application Gateway V2 version. The logs are stored in the Azure Diagnostics table and you can use the Azure Monitor Log Table Reference for a reference of all Azure Monitor Logs / Log Analytics tables. The logs contain information such as the URI of the client request, user agent details, request routing rule, HTTP method, Appgw instance, HTTP version, client IP, host header, query string, and SSL enabled. You can use the Azure Log Analytics to examine the logs and create a query to summarize the logs based on the ruleId_s and time generated. You can also add the query to your dashboard for a quick view of the logs.
You can find more information on how to examine the logs using Azure Log Analytics in the following articles:
Monitoring Azure Application Gateway data reference
Use Log Analytics to examine Application Gateway Web Application Firewall (WAF) Logs
Once you have the logs in Azure Log Analytics, you can integrate them with your SIEM/XDR tool.
You have three options for storing your logs:
- Storage account: Storage accounts are best used for logs when logs are stored for a longer duration and reviewed when needed.
- Event hubs: Event hubs are a great option for integrating with other security information and event management (SIEM) tools to get alerts on your resources.
- Azure Monitor logs: Azure Monitor logs is best used for general real-time monitoring of your application or looking at trends.
Hope this helps. Do let us know if you need any further help.
If this answers your query, do click 'Accept Answer' and 'Yes' if this answer helpful. And, if you have any further query do let us know.