Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You manage a virtual network named VNet1 that is hosted in the West US Azure region.
VNet1 hosts two virtual machines named VM1 and VM2 that run Windows Server.
You need to inspect all the network traffic from VM1 to VM2 for a period of three hours.
Solution: From Azure Monitor, you create a metric on Network In and Network Out.
Does this meet the goal?
Click on the arrows to vote for the correct answer
A. B.B
You should use Azure Network Watcher.
https://docs.microsoft.com/en-us/azure/network-watcher/network-watcher-monitoring-overviewNo, the solution provided does not meet the stated goal of inspecting all network traffic from VM1 to VM2 for a period of three hours.
Creating a metric on Network In and Network Out in Azure Monitor will only track the amount of data transmitted and received by the virtual machines. It will not provide information about the content or details of the network traffic.
To inspect all network traffic between VM1 and VM2, you can use Network Watcher, a network monitoring and diagnostic service in Azure. Specifically, you can use the Network Watcher's Packet Capture feature to capture network traffic data.
To capture network traffic data between VM1 and VM2 for a period of three hours using Network Watcher, you can follow these steps:
In the Azure portal, navigate to the Network Watcher service in the same region as the virtual network.
In the Network Watcher service, select the virtual network VNet1.
Select the VM1 virtual machine and enable the Packet Capture feature.
Set the capture filter to capture traffic between VM1 and VM2.
Set the capture duration to three hours.
Start the packet capture.
After three hours, stop the packet capture.
Download the captured network traffic data for analysis.
This approach will provide detailed information about all the network traffic between VM1 and VM2 during the three-hour period, including the content and details of the network packets.