![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(310.4, 69%, 40%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMJ%3C/text%3E%3C/svg%3E)
Azure Application Gateway
An Azure service that provides a platform-managed, scalable, and highly available application delivery controller as a service.
1,000 questions
Welcome to the Microsoft Q&A Platform. Thank you for reaching out & I hope you are doing well.
I am afraid I do not follow when you say "all KQL query logs for application gateway".
There is two main logs, and all the other logs are derived from them.
See : How to Enable logging through the Azure portal
- Access Logs : https://video2.skills-academy.com/en-us/azure/application-gateway/application-gateway-diagnostics#access-log
- Firewall Logs : https://video2.skills-academy.com/en-us/azure/application-gateway/application-gateway-diagnostics#firewall-log
Once you have enabled them,
For AccessLogs : You can use the Below Query to list the request response.
AzureDiagnostics
| where ResourceProvider == "MICROSOFT.NETWORK" and Category == "ApplicationGatewayAccessLog"
For Firewall Logs:
AzureDiagnostics
| where ResourceProvider == "MICROSOFT.NETWORK" and Category == "ApplicationGatewayAccessLog"
- This additionally also contains various scenarios such as
- Matched/Blocked requests by IP
- Matched/Blocked requests by URI
- Top matched rules
- Top five matched rule groups
Kindly let us know if this helps or you need further assistance on this issue.
Thanks,
Kapil
Please don’t forget to close the thread by clicking "Accept the answer" wherever the information provided helps you, as this can be beneficial to other community members.