Share via

Differences between network flow logs and VNET flow logs

romero 125 Reputation points
2023-12-04T04:16:27.17+00:00

Thank you for your interest in the post.

I am interested in the VNET flow log, which is a service that is still in preview status.

Is the VNET flow log superior to the network flow log?

Does collecting VNET flow logs mean that I don't need to collect network flow logs?

Or, if I collect VNET flow logs, do I still need to augment them with network flow log collection to collect specific logs?

This is very important to avoid duplicate log collection when it comes to cost.

In general, users don't want to have holes in their security logs.

Thank you. Have a great day :)

Azure Virtual Network
Azure Virtual Network
An Azure networking service that is used to provision private networks and optionally to connect to on-premises datacenters.
2,513 questions
Azure Network Watcher
Azure Network Watcher
An Azure service that is used to monitor, diagnose, and gain insights into network performance and health.
173 questions
0 comments
Accepted answer
  1. msrini-MSFT 9,286 Reputation points Microsoft Employee
    2023-12-04T04:44:03.2533333+00:00

    Hi,

    You can just use VNET flow logs which covers all the logs from NSG flow logs + it has few additional log collection. But VNET flow logs are currently in preview and hence I would suggest you to wait till it get GA and then disable NSG flow logs and start using VNET flow logs.

    Reference: https://learn.microsoft.com/en-us/azure/network-watcher/vnet-flow-logs-overview

    Regards,

    Karthik Srinivas

0 additional answers

Sort by: Most helpful
Most helpful Newest Oldest

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.