Merge pull request #286726 from TimShererWithAquent/nat-gateway-working

v-dirichards · web-flow · commit cccb6cb01a6a · 2024-12-09T10:43:24.000-06:00
290929: Q&amp;M: Onboard 15 services: Azure NAT Gateway
diff --git a/articles/nat-gateway/monitor-nat-gateway-reference.md b/articles/nat-gateway/monitor-nat-gateway-reference.md
@@ -0,0 +1,63 @@
+---
+title: Monitoring data reference for Azure NAT Gateway
+description: This article contains important reference material you need when you monitor Azure NAT Gateway by using Azure Monitor.
+ms.date: 12/02/2024
+ms.custom: horz-monitor
+ms.topic: reference
+author: asudbring
+ms.author: allensu
+ms.service: azure-nat-gateway
+---
+# Azure NAT Gateway monitoring data reference
+
+[!INCLUDE [horz-monitor-ref-intro](~/reusable-content/ce-skilling/azure/includes/azure-monitor/horizontals/horz-monitor-ref-intro.md)]
+
+See [Monitor Azure NAT Gateway](monitor-nat-gateway.md) for details on the data you can collect for Azure NAT Gateway and how to use it.
+
+[!INCLUDE [horz-monitor-ref-metrics-intro](~/reusable-content/ce-skilling/azure/includes/azure-monitor/horizontals/horz-monitor-ref-metrics-intro.md)]
+
+NAT gateway metrics can be found in the following locations in the Azure portal.
+
+- **Metrics** page under **Monitoring** from a NAT gateway's resource page.
+
+- **Insights** page under **Monitoring** from a NAT gateway's resource page.
+
+  :::image type="content" source="./media/nat-metrics/nat-insights-metrics.png" alt-text="Screenshot of the insights and metrics options in NAT gateway overview.":::
+
+- Azure Monitor page under **Metrics**.
+
+  :::image type="content" source="./media/nat-metrics/azure-monitor.png" alt-text="Screenshot of the metrics section of Azure Monitor.":::
+
+### Supported metrics for Microsoft.Network/natgateways
+
+The following table lists the metrics available for the Microsoft.Network/natgateways resource type.
+
+[!INCLUDE [horz-monitor-ref-metrics-tableheader](~/reusable-content/ce-skilling/azure/includes/azure-monitor/horizontals/horz-monitor-ref-metrics-tableheader.md)]
+
+[!INCLUDE [Microsoft.Network/natgateways](~/reusable-content/ce-skilling/azure/includes/azure-monitor/reference/metrics/microsoft-network-natgateways-metrics-include.md)]
+
+> [!NOTE]
+> Count aggregation is not recommended for any of the NAT gateway metrics. Count aggregation adds up the number of metric values and not the metric values themselves. Use Total aggregation instead to get the best representation of data values for connection count, bytes, and packets metrics.
+>
+> Use Average for best represented health data for the datapath availability metric.
+>
+> For information about aggregation types, see [aggregation types](/azure/azure-monitor/essentials/metrics-aggregation-explained#aggregation-types).
+
+For more information, see [How to use NAT gateway metrics](nat-metrics.md#how-to-use-nat-gateway-metrics).
+
+[!INCLUDE [horz-monitor-ref-metrics-dimensions-intro](~/reusable-content/ce-skilling/azure/includes/azure-monitor/horizontals/horz-monitor-ref-metrics-dimensions-intro.md)]
+
+[!INCLUDE [horz-monitor-ref-metrics-dimensions](~/reusable-content/ce-skilling/azure/includes/azure-monitor/horizontals/horz-monitor-ref-metrics-dimensions.md)]
+
+- ConnectionState: Attempted, Failed
+- Direction: In, Out
+- Protocol: 6 TCP, 17 UDP
+
+[!INCLUDE [horz-monitor-ref-activity-log](~/reusable-content/ce-skilling/azure/includes/azure-monitor/horizontals/horz-monitor-ref-activity-log.md)]
+
+- [Microsoft.Network resource provider operations](/azure/role-based-access-control/resource-provider-operations#microsoftnetwork)
+
+## Related content
+
+- See [Monitor Azure NAT Gateway](monitor-nat-gateway.md) for a description of monitoring Azure NAT Gateway.
+- See [Monitor Azure resources with Azure Monitor](/azure/azure-monitor/essentials/monitor-azure-resource) for details on monitoring Azure resources.
diff --git a/articles/nat-gateway/monitor-nat-gateway.md b/articles/nat-gateway/monitor-nat-gateway.md
@@ -0,0 +1,49 @@
+---
+title: Monitor Azure NAT Gateway
+description: Start here to learn how to monitor Azure NAT Gateway by using the available Azure Monitor metrics and alerts.
+ms.date: 12/02/2024
+ms.custom: horz-monitor
+ms.topic: conceptual
+author: asudbring
+ms.author: allensu
+ms.service: azure-nat-gateway
+---
+
+# Monitor Azure NAT Gateway
+
+[!INCLUDE [azmon-horz-intro](~/reusable-content/ce-skilling/azure/includes/azure-monitor/horizontals/azmon-horz-intro.md)]
+
+## Collect data with Azure Monitor
+
+This table describes how you can collect data to monitor your service, and what you can do with the data once collected:
+
+|Data to collect|Description|How to collect and route the data|Where to view the data|Supported data|
+|---------|---------|---------|---------|---------|
+|Metric data|Metrics are numerical values that describe an aspect of a system at a particular point in time. Metrics can be aggregated using algorithms, compared to other metrics, and analyzed for trends over time.|[- Collected automatically at regular intervals.</br> - You can route some platform metrics to a Log Analytics workspace to query with other data. Check the **DS export** setting for each metric to see if you can use a diagnostic setting to route the metric data.]|[Metrics explorer](/azure/azure-monitor/essentials/metrics-getting-started)| [Azure NAT Gateway metrics supported by Azure Monitor](/azure/nat-gateway/monitor-nat-gateway-reference#metrics)|
+|Resource log data|Logs are recorded system events with a timestamp. Logs can contain different types of data, and be structured or free-form text. You can route resource log data to Log Analytics workspaces for querying and analysis.|[Create a diagnostic setting](/azure/azure-monitor/essentials/create-diagnostic-settings) to collect and route resource log data.| [Log Analytics](/azure/azure-monitor/learn/quick-create-workspace)|[Azure NAT Gateway resource log data supported by Azure Monitor](/azure/nat-gateway/monitor-nat-gateway-reference#activity-log)  |
+|Activity log data|The Azure Monitor activity log provides insight into subscription-level events. The activity log includes information like when a resource is modified or a virtual machine is started.|- Collected automatically.</br> - [Create a diagnostic setting](/azure/azure-monitor/essentials/create-diagnostic-settings) to a Log Analytics workspace at no charge.|[Activity log](/azure/azure-monitor/essentials/activity-log)|  |
+
+[!INCLUDE [azmon-horz-supported-data](~/reusable-content/ce-skilling/azure/includes/azure-monitor/horizontals/azmon-horz-supported-data.md)]
+
+## Built in monitoring for Azure NAT Gateway
+
+[Azure Monitor Network Insights](../network-watcher/network-insights-overview.md) allows you to visualize your Azure infrastructure setup and to review all metrics for your NAT gateway resource from a preconfigured metrics dashboard. These visual tools help you diagnose and troubleshoot any issues with your NAT gateway resource.
+
+For more information on NAT Gateway Insights, see [Network Insights](nat-metrics.md#network-insights).
+
+[!INCLUDE [azmon-horz-tools](~/reusable-content/ce-skilling/azure/includes/azure-monitor/horizontals/azmon-horz-tools.md)]
+
+[!INCLUDE [azmon-horz-export-data](~/reusable-content/ce-skilling/azure/includes/azure-monitor/horizontals/azmon-horz-export-data.md)]
+
+[!INCLUDE [azmon-horz-kusto](~/reusable-content/ce-skilling/azure/includes/azure-monitor/horizontals/azmon-horz-kusto.md)]
+
+[!INCLUDE [azmon-horz-alerts-part-one](~/reusable-content/ce-skilling/azure/includes/azure-monitor/horizontals/azmon-horz-alerts-part-one.md)]
+
+[!INCLUDE [azmon-horz-alerts-part-two](~/reusable-content/ce-skilling/azure/includes/azure-monitor/horizontals/azmon-horz-alerts-part-two.md)]
+
+[!INCLUDE [azmon-horz-advisor](~/reusable-content/ce-skilling/azure/includes/azure-monitor/horizontals/azmon-horz-advisor.md)]
+
+## Related content
+
+- See [Azure NAT Gateway monitoring data reference](monitor-nat-gateway-reference.md) for a reference of the metrics, logs, and other important values created for Azure NAT Gateway.
+- See [Monitoring Azure resources with Azure Monitor](/azure/azure-monitor/essentials/monitor-azure-resource) for general details on monitoring Azure resources.
diff --git a/articles/nat-gateway/nat-metrics.md b/articles/nat-gateway/nat-metrics.md
@@ -5,7 +5,7 @@ description: Get started learning about Azure Monitor metrics and alerts availab
 author: asudbring
 ms.service: azure-nat-gateway
 ms.topic: how-to
-ms.date: 04/29/2024
+ms.date: 09/16/2024
 ms.author: allensu
 # Customer intent: As an IT administrator, I want to understand available Azure Monitor metrics and alerts for Virtual Network NAT.
 ---
@@ -25,16 +25,9 @@ Azure NAT Gateway provides the following diagnostic capabilities:
 
 ## Metrics overview
 
-NAT gateway provides the following multi-dimensional metrics in Azure Monitor:
+[!INCLUDE [horz-monitor-ref-metrics-tableheader](~/reusable-content/ce-skilling/azure/includes/azure-monitor/horizontals/horz-monitor-ref-metrics-tableheader.md)]
 
-| Metric | Description | Recommended aggregation | Dimensions |
-|---|---|---|---|
-| Bytes | Bytes processed inbound and outbound | Sum | **Direction (In; Out)**, **Protocol (6 TCP; 17 UDP)** |
-| Packets | Packets processed inbound and outbound | Sum | **Direction (In; Out)**, **Protocol (6 TCP; 17 UDP)** |
-| Dropped Packets | Packets dropped by the NAT gateway | Sum | / |
-| SNAT Connection Count | Number of new SNAT connections over a given interval of time | Sum | **Connection State (Attempted, Failed)**, **Protocol (6 TCP; 17 UDP)** |
-| Total SNAT Connection Count | Total number of active SNAT connections | Sum | **Protocol (6 TCP; 17 UDP)** |
-| Datapath Availability | Availability of the data path of the NAT gateway. Used to determine whether the NAT gateway endpoints are available for outbound traffic flow. | Avg | **Availability (0, 100)** |
+[!INCLUDE [Microsoft.Network/natgateways](~/reusable-content/ce-skilling/azure/includes/azure-monitor/reference/metrics/microsoft-network-natgateways-metrics-include.md)]
 
 >[!NOTE]
 > Count aggregation is not recommended for any of the NAT gateway metrics. Count aggregation adds up the number of metric values and not the metric values themselves. Use Sum aggregation instead to get the best representation of data values for connection count, bytes, and packets metrics.
@@ -77,7 +70,7 @@ The following sections detail how to use each NAT gateway metric to monitor, man
 
 ### Bytes
 
-The **Bytes** metric shows you the amount of data going outbound through NAT gateway and returning inbound in response to an outbound connection. 
+The Bytes metric shows you the amount of data going outbound through NAT gateway and returning inbound in response to an outbound connection. 
 
 Use this metric to:
 
@@ -99,11 +92,11 @@ To view the amount of data passing through NAT gateway:
 
 1. To see data processed inbound or outbound as their own individual lines in the metric graph, select **Apply splitting**. 
 
-1.  In the **Values** drop-down menu, select **Direction (Out | In)**.
+1. In the **Values** drop-down menu, select **Direction (Out | In)**.
 
 ### Packets
 
-The packets metric shows you the number of data packets passing through NAT gateway. 
+The Packets metric shows you the number of data packets passing through NAT gateway. 
 
 Use this metric to:
   
@@ -113,9 +106,9 @@ Use this metric to:
 
 To view the number of packets sent in one or both directions through NAT gateway, follow the same steps in the [Bytes](#bytes) section. 
 
-### Dropped packets
+### Dropped Packets
 
-The dropped packets metric shows you the number of data packets dropped by NAT gateway when traffic goes outbound or returns inbound in response to an outbound connection. 
+The Dropped Packets metric shows you the number of data packets dropped by NAT gateway when traffic goes outbound or returns inbound in response to an outbound connection. 
 
 Use this metric to: 
 
@@ -127,9 +120,9 @@ Possible reasons for dropped packets:
 
 - Outbound connectivity failure can cause packets to drop. Connectivity failure can happen for various reasons. See the [NAT gateway connectivity troubleshooting guide](/azure/nat-gateway/troubleshoot-nat-connectivity) to help you further diagnose. 
 
-### SNAT connection count
+### SNAT Connection Count
 
-The SNAT connection count metric shows you the number of new SNAT connections within a specified time frame. This metric can be filtered by **Attempted** and **Failed** connection states. A failed connection volume greater than zero can indicate SNAT port exhaustion.
+The SNAT Connection Count metric shows you the number of new SNAT connections within a specified time frame. This metric can be filtered by **Attempted** and **Failed** connection states. A failed connection volume greater than zero can indicate SNAT port exhaustion.
 
 Use this metric to: 
 
@@ -159,9 +152,9 @@ To view the connection state of your connections:
 
     :::image type="content" source="./media/nat-metrics/nat-metrics-3.png" alt-text="Screenshot of the metrics configuration.":::
 
-### Total SNAT connection count
+### Total SNAT Connection Count
 
-The **Total SNAT connection count** metric shows you the total number of active SNAT connections passing through NAT gateway. 
+The Total SNAT Connection Count metric shows you the total number of active SNAT connections passing through NAT gateway. 
 
 You can use this metric to:
 
@@ -178,7 +171,7 @@ Possible reasons for failed connections:
 >[!NOTE]
 > When NAT gateway is attached to a subnet and public IP address, the Azure platform verifies NAT gateway is healthy by conducting health checks. These health checks appear in NAT gateway's SNAT Connection Count metrics. The amount of health check related connections may vary as the health check service is optimized, but is negligible and doesn’t impact NAT gateway’s ability to connect outbound.
 
-### Datapath availability
+### Datapath Availability
 
 The datapath availability metric measures the health of the NAT gateway resource over time. This metric indicates if NAT gateway is available for directing outbound traffic to the internet. This metric is a reflection of the health of the Azure infrastructure. 
 
@@ -238,7 +231,7 @@ Setting the aggregation granularity to less than 5 minutes may trigger false pos
 
 ### Alerts for SNAT port exhaustion 
 
-Set up an alert on the **SNAT connection count** metric to notify you of connection failures on your NAT gateway. A failed connection volume greater than zero can indicate that you reached the connection limit on your NAT gateway or that you hit SNAT port exhaustion. Investigate further to determine the root cause of these failures.
+Set up an alert on the **SNAT Connection Count** metric to notify you of connection failures on your NAT gateway. A failed connection volume greater than zero can indicate that you reached the connection limit on your NAT gateway or that you hit SNAT port exhaustion. Investigate further to determine the root cause of these failures.
 
 To create the alert, use the following steps:
 
@@ -317,7 +310,7 @@ For more information on what each metric is showing you and how to analyze these
 
 ### What type of metrics are available for NAT gateway?
 
-The NAT gateway supports [multi-dimensional metrics](/azure/azure-monitor/essentials/data-platform-metrics#multi-dimensional-metrics). You can filter the multi-dimensional metrics by different dimensions to gain greater insight into the provided data. The [SNAT connection count](#snat-connection-count) metric allows you to filter the connections by Attempted and Failed connections, enabling you to distinguish between different types of connections made by the NAT gateway.
+The NAT gateway supports [multi-dimensional metrics](/azure/azure-monitor/essentials/data-platform-metrics#multi-dimensional-metrics). You can filter the multi-dimensional metrics by different dimensions to gain greater insight into the provided data. The [SNAT Connection Count](#snat-connection-count) metric allows you to filter the connections by Attempted and Failed connections, enabling you to distinguish between different types of connections made by the NAT gateway.
 
 Refer to the dimensions column in the [metrics overview](#metrics-overview) table to see which dimensions are available for each NAT gateway metric. 
 
diff --git a/articles/nat-gateway/toc.yml b/articles/nat-gateway/toc.yml
@@ -52,10 +52,12 @@ items:
     href: nat-gateway-snat.md
   - name: NAT gateway design guidance
     href: nat-gateway-design.md
-- name: How-to
-  items:
   - name: Metrics and alerts
     href: nat-metrics.md
+- name: How-to
+  items:
+  - name: Monitor NAT gateway
+    href: monitor-nat-gateway.md
   - name: Resource health
     href: resource-health.md
   - name: Manage NAT gateway
@@ -92,6 +94,8 @@ items:
     href: /azure/templates/microsoft.network/allversions
   - name: Code samples
     href: https://azure.microsoft.com/resources/samples/?service=virtual-network
+  - name: Monitoring data reference
+    href: monitor-nat-gateway-reference.md
 - name: Resources
   items:
   - name: Build your skills with Microsoft Learn training
