![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(150.4, 28.999999999999996%, 24%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EN%3C/text%3E%3C/svg%3E)
Azure Firewall
An Azure network security service that is used to protect Azure Virtual Network resources.
787 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(300.8, 11%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ETH%3C/text%3E%3C/svg%3E)
Hi @Netwiedz
You can visualize network traffic patterns with Azure Network Watcher and open source tools. Network Watcher's packet capture feature allows you to capture the data necessary to perform network forensics and better understand your network traffic. You can use open-source tools such as CapAnalysis to visualize packets captures and perform deep packet inspection.
With CapAnalysis, you can quickly identify trends within your network traffic and see the information you are looking for, such as date/time, source IP, dest IP, protocol, port, TCP end state, bytes sent/received. You can also filter by time or any of these fields.
You can also use Azure Firewall Workbooks to monitor logs and understand more about the resource based on the source IP address. You can get information like virtual machine name and network interface name. It's simple to filter to the resource from the logs.
For details, see
https://learn.microsoft.com/en-us/azure/network-watcher/network-watcher-using-open-source-tools
https://learn.microsoft.com/en-us/azure/firewall/firewall-workbook
Please accept as answer and upvote if the above information is helpful for the benefit of the community.