Share via

Network Connectivity required between Azure PaaS services (like Storage Account) and Azure Log Analytics workspace for sending diagnostics logs

Rajiv Bansal 186 Reputation points
2024-10-17T12:00:48.48+00:00

Hi,

I want to send diagnostic logs from Azure PaaS service like storage account to a Log Analytics Workspace. I want to keep the network connection private. Is it possible to have a control over the network this traffic uses?

Documentation shows that a Azure Monitor Private Link Service (AMPLS) is available. But my understanding is that it is only for ingestion from resources like some agent sitting in VNet or on premises. It doesn't applies to diagnostic logs. Please confirm.

Thanks

Rajiv

Azure Monitor
Azure Monitor
An Azure service that is used to collect, analyze, and act on telemetry data from Azure and on-premises environments.
3,284 questions
Azure Private Link
Azure Private Link
An Azure service that provides private connectivity from a virtual network to Azure platform as a service, customer-owned, or Microsoft partner services.
512 questions
Accepted answer
  1. Deepanshukatara-6769 9,585 Reputation points
    2024-10-17T12:18:41.2+00:00

    Hello Rajiv , Welcome to MS Q&A

    Diagnostics are not routed through a public network. Our documentation on Azure Monitor Private Link scope states the following:

    Logs and metrics uploaded to a workspace via Diagnostic Settings go over a secure private Microsoft channel and are not controlled by these settings*.* https://learn.microsoft.com/en-us/azure/azure-monitor/logs/private-link-design#diagnostic-logs

    Please let me know if you have any further questions

    kindly accept answer if it helps

    Thanks

    Deepanshu

0 additional answers

Sort by: Most helpful
Most helpful Newest Oldest

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.