Del via

Enable NSG Flow Logs

  • Code Sample
Browse code

Azure Public Test Date Azure Public Test Result

Azure US Gov Last Test Date Azure US Gov Last Test Result

Best Practice Check Cred Scan Check

Bicep Version

Deploy To Azure Deploy To Azure US Gov Visualize

This template deploys an NSG flow logs resource inside the Network Watcher resource group.

Overview

This template enables a new NSG flow logs resource type Microsoft.Network/networkWatchers/flowLogs. To learn more about how to deploy the template, see the quickstart article.

The flow logs resource is enabled in the (hidden) NetworkWatcherRG resource group that contains the Network Watcher service and related resources. The logs are written to a storage account which is also deployed by the template.

Useful links:

Prerequisites

Network Watcher must be enabled for your subscription. Network Watcher is enabled by default, so unless you have disabled it, this should not be an issue.

Tags: Network Watcher, NSG flow logs, Microsoft.Storage/storageAccounts, Microsoft.Resources/deployments, Microsoft.Network/networkWatchers/flowLogs, JSON, Microsoft.Network/networkSecurityGroups, Microsoft.Network/virtualNetworks