Configuring a VPN Gateway's Diagnostic Logs to be Sent to a Log Analytics Workspace

It is recommended that you create a new Log Analytics Workspace for monitoring purposes, and send all the logs that eG monitors to that workspace. If such a workspace pre-exists, then proceed to set that workspace as the destination for the Diagnostic logs of a VPN Gateway. To achieve this, use steps 5-10 of the procedure detailed below. If no such workspace is available, then do the following:

  • Use steps 1-4 of the procedure discussed below to create a new log analytics workspace.

  • Then, use steps 5-10 of the procedure to configure a VPN Gateway's diagnostic logs to be sent to the new workspace you created.

  1. To create a new Log Analytics Workspace, first, login to the Microsoft Azure Portal, and use the Search text box therein to search for the string 'log analytics'. The Log Analytics Workspace option will then appear in the sear\\\ch results (see Figure 1). Click on that option.

    Figure 1 : Selecting the Log Analytics Workspace option

  2. Figure 2 will then appear. If one/more Log Analytics Workspaces pre-exist, then Figure 2 will reveal them. To create a new workspace, click on the Create link indicated by Figure 2.

    Figure 2 : Clicking on the Create link in the Log Analytics Workspaces window

  3. Doing so will invoke Figure 3. From the Subscription drop-down in Figure 3, select the Azure Subscription for which the new workspace is being created. This should be the Microsoft Azure Subscription that you are monitoring. Next, select the Resource Group to which the chosen subscription belongs, and its Region. Finally, specify Name of the new Log Analytics Workspace.

    Figure 3 : Creating a New Log Analytics Workspace

  4. Finally, click the Review + Create button to add the new log analytics workspace.

  5. Now, proceed to set this workspace as the destination for a VPN Gateway's diagnostic logs. For this, first select the Monitor service. Figure 4 will then appear. Click on the Diagnostic Settings option in the left panel of Figure 4.

Figure 4 : Selecting the Diagnostic Settings option of the Azure Monitor

  1. Figure 5 will then appear listing all the resources of a chosen subscription. Here, select the Subscription being monitored. In the resource list of that subscription, locate the VPN gateway (this should typically be of the Resource Type, Virtual Network Gateway) for which you want to define/view diagnostic settings. Then, click on that gateway.

    Figure 5 : Clicking on the VPN gateway to be monitored

  2. will then appear. To create a new diagnostic setting for the chosen gateway, click on the Add diagnostic setting option in .

    Figure 6 : List of workspace names

  1. Figure 7 will then appear. Provide a Diagnostic setting name. Then, select all the check boxes under Categories, so that all diagnostic logs related to the chosen VPN gateway are enabled. Then, select the Send to Log Analytics workspace check box, and pick the Log Analytics workspace to which the chosen logs are to be sent. Here, you should either select the Log Analytics workspace that you created earlier in this procedure, or that Log Analytics workspace that you have used as the destination for all other logs that eG monitors.

    Figure 7 : Sending diagnostic logs of a VPN gateway to a log analytics workspace

  2. Finally, click the Save option in Figure 7.

  3. Repeat steps 5-10 for every VPN gateway that you want monitored.