Azure Firewall
An Azure network security service that is used to protect Azure Virtual Network resources.
656 questions
Hello @Belan Marek ,
Welcome to Microsoft Q&A Platform. Thank you for reaching out & hope you are doing well.
I understand that you enabled Azure Firewall Policy Analytics and the traffic is going through the Firewall and the logs are going to the configured log analytics but you have zero matching flow and hit counts.
Could you please confirm if all the prerequisites are met?
Refer : https://video2.skills-academy.com/en-us/azure/firewall/firewall-preview#prerequisites
The network rule name logging preview feature must be enabled to view network rules analysis.
Refer : https://video2.skills-academy.com/en-us/azure/firewall/firewall-preview#network-rule-name-logging-preview
The structured firewall logs feature must be enabled on Firewall Standard or Premium.
Refer : https://video2.skills-academy.com/en-us/azure/firewall/firewall-preview#structured-firewall-logs-preview
NOTE : Policy Analytics has a dependency on both Log Analytics and Azure Firewall resource specific logging.
You can check logs are configured appropriately by running a log analytics query on the resource specific tables such as AZFWNetworkRuleAggregation, AZFWApplicationRuleAggregation, and AZFWNatRuleAggregation.
Kindly let us know if the above helps or you need further assistance on this issue.
----------------------------------------------------------------------------------------------------------------
Please "Accept the answer" if the information helped you. This will help us and others in the community as well.