Azure NSG Flow Logs capture granular network traffic data flowing through Network Security Groups, including source/destination IPs, ports, protocols, and traffic decisions. Flow logs are stored in Azure Storage with one-minute intervals and contain detailed flow tuples showing allowed/denied traffic. They serve as the source of truth for network activity in cloud environments and are essential for security analysis, troubleshooting, and incident response. Microsoft recommends enabling flow logs on all critical subnets as a security best practice.
Sort: