Forum Discussion
Network trace or Packet capture without VM
Hi, trying to debug tcp timeout problems, On-Premises server calls Azure App Service via Private endpoint. Site-to-site is ExpressRoute, calls from on-prem occasionally ends up in timeout. These fai...
To capture packets in Azure between your ExpressRoute gateway and your Azure App Service Private Endpoint, you can use Azure Network Watcher's packet capture feature. This allows you to capture network traffic to and from a virtual machine, network interface, or subnet. Here's how you can use this feature to capture packets:
In the Azure portal, navigate to the Network Watcher resource for your subscription.
Select Packet Capture from the menu on the left-hand side.
Click on Create a packet capture.
Provide a name for your packet capture and select the appropriate resource for the capture. In your case, you would select the network interface for your App Service Private Endpoint.
Select the filters for the capture. You can specify a source IP address, a destination IP address, a protocol, and a port range.
Set the maximum duration and size for the capture.
Select the storage account where you want to store the captured packets.
Click on Create to start the packet capture.
Once the packet capture is complete, you can download the captured packets from the storage account you specified and use Wireshark to analyze the packets and diagnose and troubleshoot the TCP timeouts.
In the Azure portal, navigate to the Network Watcher resource for your subscription.
Select Packet Capture from the menu on the left-hand side.
Click on Create a packet capture.
Provide a name for your packet capture and select the appropriate resource for the capture. In your case, you would select the network interface for your App Service Private Endpoint.
Select the filters for the capture. You can specify a source IP address, a destination IP address, a protocol, and a port range.
Set the maximum duration and size for the capture.
Select the storage account where you want to store the captured packets.
Click on Create to start the packet capture.
Once the packet capture is complete, you can download the captured packets from the storage account you specified and use Wireshark to analyze the packets and diagnose and troubleshoot the TCP timeouts.
shankerhari Hi, at least in my Azure tenant Packet Capture is possible only with virtual machines, not possible to capture from subnet level, as you stated. Or am I missing something here?