We are currently leverage an IDS tool for an additional layer of security. One challenge that we are encountering is determining the best way to get packet level information from the Azure environment to the IDS appliance? The appliance will have to ingest packet level data and not log level data. Does Azure have any type of agent or application which will allow us to capture the packet level data and configure it to be sent to a Log Collector/IDS Appliance?
We are current dealing with on premise hardware, where we are configuring a SPAN/Mirrored port on the switch and connecting said port to the IDS appliance.