The migration of applications from traditional data centers to cloud infrastructure is well underway. And it’s tempting to think that “the network” is just one of the many infrastructure management headaches that disappear after migrating to the cloud. However, most organizations find that understanding the network behavior of cloud-deployed applications is still a critical part of ensuring their availability and performance. But pervasive visibility of network traffic details hasn’t been available in the cloud.
Now with Network Security Group (NSG) Flow Logs for Azure, and network analytics from Kentik, cloud ops teams can stop flying blind. NSG Flow Logs provide granular details of all ingress and egress IP traffic through an NSG on a per-rule basis without having to instrument VMs or services individually. Streamed to Kentik’s analytics-as-a-service platform in real-time, NSG Flow Logs provide powerful insight for teams across the organization.
Network operators and engineers gain the ability to visualize traffic flows between regions, understand flow session state and the associated number of bytes and packets transferred, pinpoint service dependencies in hybrid and multi-cloud environments, and utilize a data-driven approach to cloud infrastructure planning, growth, and cost management.
Security engineering and operations teams gain pervasive instrumentation of potential threat activity to, from, and within Network Security Groups (NSG) for faster incident response and more granular forensic analysis. Kentik’s built-in streaming analytics engine can also baseline normal patterns of network activity and allow SecOps teams to proactively detect changes in network behavior like unexpected services, geographies, or traffic volumes that could indicate malicious activity. Kentik’s enhanced reporting on Azure NSG firewall actions provides teams immediate visibility into which rules, security groups, or VMs acted on traffic, allowing rapid troubleshooting of access policies across complex environments.
Fast filtering, pivots, and drill-downs provide instant situational awareness, so DevOps and site reliability engineering (SRE) teams can quickly get to root cause and gather the details they need to restore services to a healthy state. Kentik puts services and applications into the context of the infrastructure they run on, regardless of whether that’s physical hosts, VMs, or containers. The Kentik platform also baselines normal service-to-service communication characteristics and proactively detects anomalies.
With customizable dashboards and an intuitive UI, executives can leverage insights from Kentik to see the big picture, understand changes in user/customer experience KPIs, effectively control infrastructure cost, and better strategize hybrid/multi-cloud deployment/migrations based on spending, budgets, and expectations.