You are here

Azure Network Watchers

Requires Opsview Monitor 6
check_circle
Opsview Supported

404: Not Found

Cloud - Azure - Network Watchers Opspack

#

Azure Network Watchers allow you to monitor, diagnose, view metrics, and enable or disable logs for resources in an Azure virtual network. You can monitor communication between virtual machines and endpoints, and view the relationships between resources in a virtual network. Additionally, you can capture packets, troubleshoot and diagnose problems inside a virtual network.

What You Can Monitor

This Opspack allows you to monitor the connectivity between two VMs using a Network Watcher, get the results of troubleshooting for a virtual network gateway, get information on the connection monitors for a specific Network Watcher, and get information on the security rules present for a target VM.

Service Checks

Host Template Service Check Description
Cloud - Azure - Network Watcher - VM Security Rules Azure - Network Watcher - VM Security Rules Display the list of network security rules for a VM if there are fewer rules than the display maximum, otherwise display the number of rules. Returns a warning when the total rule count is NOT equal to the warning threshold [Default Timespan = 5mins, Granularity = 5mins]
Cloud - Azure - Network Watcher - Connection Monitors Azure - Network Watcher - Connection Monitors If any Connection Monitors for the Network Watcher have a Monitoring Status of either 'Stopped' or 'NotStarted' then display them up to the display maximum [Default Timespan = 5mins, Granularity = 5mins]
Cloud - Azure - Network Watcher - VM Connectivity Azure - Network Watcher - VM Connectivity Check the status of TCP connection from a source VM to a target VM in Azure via a Network Watcher [Default Timespan = 5mins, Granularity = 5mins]
Cloud - Azure - Network Watcher - VNG Troubleshooting Azure - Network Watcher - VNG Troubleshooting Check the status of the last troubleshooting results for a target resource [Default Timespan = 5mins, Granularity = 5mins]

Prerequisites

Opsview Monitor Version 6.0.0 (released 07 September 2018) or newer. Check Opsview Release Notes for the latest version of Opsview Monitor.

Known Issues

Service checks contained in this Opspack are not currently supported in the Troubleshooting pane. Trying to run them in Troubleshooting mode will raise an Opsview Web Exception. As a workaround, you can replace $CHECKINTERVAL$ in the arguments with your check interval (in seconds). For example, a 5 minute check interval would translate to '--check_interval 300'.

Setup Azure for Monitoring

To monitor your Azure environment, you need to configure it for monitoring. This requires Administrator access on Azure.

You need to retrieve the following credentials, which will allow Opsview Monitor access to the metrics for your Azure VM:

  • Subscription ID
  • Tenant/Directory ID
  • Client/Application ID
  • Secret Key

Follow the below steps to retrieve this information.

Step 1: Find Subscription ID

The Subscription ID can be found in the Subscriptions section under the All services section from the Azure dashboard.

Find Azure Subscription ID

Find Azure Subscription ID

Step 2 : Find the Tenant/Directory ID

The Tenant/Directory ID can be found in the Azure Active Directory under the Properties section from the Azure dashboard.

Find Azure Tenant/Directory ID

Step 3: Find the Client/Application ID for your application

You need to create and register your application if you haven't already. Use the following documentation from Microsoft: Create an Azure Active Directory application

The Client/Application ID can be found in Azure Active Directory under the App registrations section from the Azure dashboard.

Find Azure Client/Application ID

Step 4: Generate the Secret Key for your application

You will need to create a Secret Key for your application, once this has been created its value will be hidden so save the value during creation.

To create the Secret Key, select your application from the list, select the Settings within your application and then select the Keys option.

There you can create a new key by adding the description and expiration period and the value will be generated.

Create Secret Key

Step 5: Provide access to the subscription you wish to monitor

Navigate to the Subscriptions section and select the Subscription you selected before.

In the Subscription to be monitored, click Access Control (IAM).

Then click the Add button, select the required role and select the application, once for each of the following roles: * Reader * Network Contributor * Storage Account Contributor

Add Subscription to Application

Add Subscription to Application

If you are running more than one subscription these steps will need to be done for each one you wish to monitor.

Setup and Configuration

To configure and utilize this Opspack, you simply need to add the 'Cloud - Azure - Network Watchers' Opspack to your Opsview Monitor system.

Step 1: Add the Host Template

Add the relevant Host Template (as listed in the Service Checks table above). If this is a resource that is applicable for a host check (has a valid hostname or IP) then you can fill in the Primary Hostname/IP field with this, and then open the Advanced section at the bottom and change the Host Check Command type to TCP Port 80 (HTTP). If the resource has no hostname or public IP, then change Host Check Command to Always assumed to be UP.

For more information, refer to Opsview Knowledge Center - Adding Host Templates to Hosts.

Step 2: Add and configure variables required for this host

Add 'AZURE_CREDENTIALS' to the host, then override the Subscription ID, Client ID, Secret Key and Tenant ID to match the values retrieved earlier.

You will require the following additional variables:

Host Template Variables Required
Cloud - Azure - Network Watcher - VM Security Rules AZURE_NETWORK_WATCHER_DETAILS, AZURE_RESOURCE_DETAILS, AZURE_CONNECTIVITY_SOURCE_DETAILS, AZURE_CONNECTIVITY_TARGET_DETAILS, AZURE_STORAGE_ACC_DETAILS
Cloud - Azure - Network Watcher - Connection Monitors AZURE_NETWORK_WATCHER_DETAILS, AZURE_RESOURCE_DETAILS, AZURE_CONNECTIVITY_SOURCE_DETAILS, AZURE_CONNECTIVITY_TARGET_DETAILS, AZURE_STORAGE_ACC_DETAILS
Cloud - Azure - Network Watcher - VM Connectivity AZURE_NETWORK_WATCHER_DETAILS, AZURE_RESOURCE_DETAILS, AZURE_CONNECTIVITY_SOURCE_DETAILS, AZURE_CONNECTIVITY_TARGET_DETAILS, AZURE_STORAGE_ACC_DETAILS
Cloud - Azure - Network Watcher - VNG Troubleshooting AZURE_NETWORK_WATCHER_DETAILS, AZURE_RESOURCE_DETAILS, AZURE_CONNECTIVITY_SOURCE_DETAILS, AZURE_CONNECTIVITY_TARGET_DETAILS, AZURE_STORAGE_ACC_DETAILS

These can be filled out as follows:

AZURE_NETWORK_WATCHER_DETAILS:

Add Variables

AZURE_RESOURCE_DETAILS:

Add Variables

AZURE_CONNECTIVITY_SOURCE_DETAILS:

Add Variables

AZURE_CONNECTIVITY_TARGET_DETAILS:

Add Variables

AZURE_STORAGE_ACC_DETAILS:

The Blob URL for an Azure Storage Account can be retrieved from the Storage Account Name > Blobs > Container Name > Properties page in the URL field.

Add Variables

For more information, refer to Opsview Knowledge Center - Adding Variables to Hosts.

Step 3: Apply changes and the system will now be monitored

View Output

v2.4-opsview-6

#

ODI-3136 Re-release Azure opspacks

v2.2-opsview-6

ODI-2057 Fixes and Improvements to Parameter handling

Improvements to user input verification and errors.

v2.1-opsview-6

ODI-1747 Fixes and Improvements to Authentication Process

Improvements to Azure authentication error handling

v2.0-opsview-6

ODI-1453 Initial Release of Azure Opspacks for Opsview Monitor 6.0

Initial release of Opspack to work with Opsview Monitor 6.0