KQL Search

Query Details

Azure Diagnostics Azure Firewall Events

Query

// Please, use any of the functions you can find in:
//
// https://github.com/ep3p/Sentinel_KQL/blob/main/Functions/AzureDiagnostics-AzureFirewallLogs.kql
// https://github.com/ep3p/Sentinel_KQL/blob/main/Functions/AZFW*-AzureFirewallLogs.kql
//
AzureFirewallLogs()
| limit 100

Explanation

The query is using the AzureFirewallLogs function to retrieve logs from Azure Firewall. It limits the results to 100 records.

Details

Jose Sebastián Canós

Released: August 30, 2023

Tables

AzureFirewallLogs

Keywords

AzureFirewallLogs,limit

Operators

AzureFirewallLogslimit

KQL Search

Azure Diagnostics Azure Firewall Events

Query

Explanation

Details

Actions