AzInitiativeAdvertizer

last sync: 2024-Nov-25 18:54:43 UTC

Deploy Azure Monitor Baseline Alerts for Connectivity

Azure Monitor Baseline Alerts (AMBA) Policy Initiative (PolicySet)

Source Repository Azure Monitor Baseline Alerts (AMBA) GitHub
Display nameDeploy Azure Monitor Baseline Alerts for Connectivity
IdAlerting-Connectivity
Version1.3.0
Details on versioning
CategoryMonitoring
DescriptionThis initiative deploys Azure Monitor Baseline Alerts to monitor Network components such as Azure Firewalls, ExpressRoute, VPN, and Private DNS Zones.
TypeCustom Azure Monitor Baseline Alerts (AMBA)
DeprecatedFalse
PreviewFalse
Policy count Total Policies: 50
Builtin Policies: 0
Static Policies: 0
AMBA Policies: 50
Policy used
Policy DisplayName Policy Id Category Effect Roles# Roles State Type
Deploy Activity Log Azure FireWall Delete Alert Deploy_activitylog_Firewall_Delete Network Default
deployIfNotExists
Allowed
deployIfNotExists, disabled		 1 Contributor GA AMBA
Deploy Activity Log NSG Delete Alert Deploy_activitylog_NSG_Delete Network Default
deployIfNotExists
Allowed
deployIfNotExists, disabled		 1 Contributor GA AMBA
Deploy Activity Log Route Table Update Alert Deploy_activitylog_RouteTable_Update Network Default
deployIfNotExists
Allowed
deployIfNotExists, disabled		 1 Contributor GA AMBA
Deploy Activity Log VPN Gateway Delete Alert Deploy_activitylog_VPNGateway_Delete Network Default
deployIfNotExists
Allowed
deployIfNotExists, disabled		 1 Contributor GA AMBA
Deploy AFW FirewallHealth Alert Deploy_AFW_FirewallHealth_Alert Network Default
deployIfNotExists
Allowed
deployIfNotExists, disabled		 1 Contributor GA AMBA
Deploy AFW SNATPortUtilization Alert Deploy_AFW_SNATPortUtilization_Alert Network Default
deployIfNotExists
Allowed
deployIfNotExists, disabled		 1 Contributor GA AMBA
Deploy ALB Data Path Availability Alert Deploy_ALB_DataPathAvailability_Alert Networking Default
deployIfNotExists
Allowed
deployIfNotExists, disabled		 1 Contributor GA AMBA
Deploy ALB Global Backend Availability Alert Deploy_ALB_GlobalBackendAvailability_Alert Networking Default
deployIfNotExists
Allowed
deployIfNotExists, disabled		 1 Contributor GA AMBA
Deploy ALB Health Probe Status Alert Deploy_ALB_HealthProbeStatus_Alert Networking Default
deployIfNotExists
Allowed
deployIfNotExists, disabled		 1 Contributor GA AMBA
Deploy ALB Used SNAT Ports Alert Deploy_ALB_UsedSNATPorts_Alert Networking Default
deployIfNotExists
Allowed
deployIfNotExists, disabled		 1 Contributor GA AMBA
Deploy ER Direct ExpressRoute Bits In Alert Deploy_ERP_ExpressRouteBitsIn_Alert Networking Default
disabled
Allowed
deployIfNotExists, disabled		 1 Contributor GA AMBA
Deploy ER Direct ExpressRoute Bits Out Alert Deploy_ERP_ExpressRouteBitsOut_Alert Networking Default
disabled
Allowed
deployIfNotExists, disabled		 1 Contributor GA AMBA
Deploy ER Direct ExpressRoute LineProtocol Alert Deploy_ERP_ExpressRoutLineProtocol_Alert Networking Default
disabled
Allowed
deployIfNotExists, disabled		 1 Contributor GA AMBA
Deploy ER Direct ExpressRoute RxLightLevel High Alert Deploy_ERP_ExpressRoutRxLightLevel_Alert Networking Default
disabled
Allowed
deployIfNotExists, disabled		 1 Contributor GA AMBA
Deploy ER Direct ExpressRoute RxLightLevel Low Alert Deploy_ERP_ExpressRoutRxLightLevellow_Alert Networking Default
disabled
Allowed
deployIfNotExists, disabled		 1 Contributor GA AMBA
Deploy ER Direct ExpressRoute TxLightLevel High Alert Deploy_ERP_ExpressRoutTxLightLevell_Alert Networking Default
disabled
Allowed
deployIfNotExists, disabled		 1 Contributor GA AMBA
Deploy ER Direct ExpressRoute TxLightLevel Low Alert Deploy_ERP_ExpressRoutTxLightLevellow_Alert Networking Default
disabled
Allowed
deployIfNotExists, disabled		 1 Contributor GA AMBA
Deploy ERG ExpressRoute Bits In Alert Deploy_ERGw_ExpressRouteBitsIn_Alert Network Default
disabled
Allowed
deployIfNotExists, disabled		 1 Contributor GA AMBA
Deploy ERG ExpressRoute Bits Out Alert Deploy_ERGw_ExpressRouteBitsOut_Alert Network Default
disabled
Allowed
deployIfNotExists, disabled		 1 Contributor GA AMBA
Deploy ERG ExpressRoute CPU Utilization Alert Deploy_ERGw_ExpressRouteCpuUtil_Alert Network Default
deployIfNotExists
Allowed
deployIfNotExists, disabled		 1 Contributor GA AMBA
Deploy ExpressRoute Circuits Arp Availability Alert Deploy_ERCIR_ArpAvailability_Alert Network Default
deployIfNotExists
Allowed
deployIfNotExists, disabled		 1 Contributor GA AMBA
Deploy ExpressRoute Circuits Bgp Availability Alert Deploy_ERCIR_BgpAvailability_Alert Network Default
deployIfNotExists
Allowed
deployIfNotExists, disabled		 1 Contributor GA AMBA
Deploy ExpressRoute Circuits QosDropBitsInPerSecond Alert Deploy_ERCIR_QosDropBitsInPerSecond_Alert Network Default
deployIfNotExists
Allowed
deployIfNotExists, disabled		 1 Contributor GA AMBA
Deploy ExpressRoute Circuits QosDropBitsOutPerSecond Alert Deploy_ERCIR_QosDropBitsOutPerSecond_Alert Network Default
deployIfNotExists
Allowed
deployIfNotExists, disabled		 1 Contributor GA AMBA
Deploy PDNSZ Capacity Utilization Alert Deploy_PDNSZ_CapacityUtil_Alert Network Default
deployIfNotExists
Allowed
deployIfNotExists, disabled		 1 Contributor GA AMBA
Deploy PDNSZ Query Volume Alert Deploy_PDNSZ_QueryVolume_Alert Network Default
disabled
Allowed
deployIfNotExists, disabled		 1 Contributor GA AMBA
Deploy PDNSZ Record Set Capacity Alert Deploy_PDNSZ_RecordSetCapacity_Alert Network Default
deployIfNotExists
Allowed
deployIfNotExists, disabled		 1 Contributor GA AMBA
Deploy PDNSZ Registration Capacity Utilization Alert Deploy_DNSZ_RegistrationCapacityUtil_Alert Network Default
deployIfNotExists
Allowed
deployIfNotExists, disabled		 1 Contributor GA AMBA
Deploy PIP Bytes in DDoS Attack Alert Deploy_PublicIp_BytesInDDoSAttack_Alert Network Default
disabled
Allowed
deployIfNotExists, disabled		 1 Contributor GA AMBA
Deploy PIP DDoS Attack Alert Deploy_PublicIp_DDoSAttack_Alert Network Default
deployIfNotExists
Allowed
deployIfNotExists, disabled		 1 Contributor GA AMBA
Deploy PIP Packets in DDoS Attack Alert Deploy_PublicIp_PacketsInDDoSAttack_Alert Network Default
disabled
Allowed
deployIfNotExists, disabled		 1 Contributor GA AMBA
Deploy PIP VIP Availability Alert Deploy_PublicIp_VIPAvailability_Alert Network Default
deployIfNotExists
Allowed
deployIfNotExists, disabled		 1 Contributor GA AMBA
Deploy VNet DDoS Attack Alert Deploy_VNET_DDoSAttack_Alert Network Default
deployIfNotExists
Allowed
deployIfNotExists, disabled		 1 Contributor GA AMBA
Deploy VNetG Egress Packet Drop Count Alert Deploy_VnetGw_TunnelEgressPacketDropCount_Alert Network Default
deployIfNotExists
Allowed
deployIfNotExists, disabled		 1 Contributor GA AMBA
Deploy VNetG Egress Packet Drop Mismatch Alert Deploy_VnetGw_TunnelEgressPacketDropMismatch_Alert Network Default
deployIfNotExists
Allowed
deployIfNotExists, disabled		 1 Contributor GA AMBA
Deploy VNetG ExpressRoute Bits Per Second Alert Deploy_VnetGw_ExpressRouteBitsPerSecond_Alert Network Default
deployIfNotExists
Allowed
deployIfNotExists, disabled		 1 Contributor GA AMBA
Deploy VNetG ExpressRoute CPU Utilization Alert Deploy_VnetGw_ExpressRouteCpuUtil_Alert Network Default
deployIfNotExists
Allowed
deployIfNotExists, disabled		 1 Contributor GA AMBA
Deploy VNetG Ingress Packet Drop Count Alert Deploy_VnetGw_TunnelIngressPacketDropCount_Alert Network Default
deployIfNotExists
Allowed
deployIfNotExists, disabled		 1 Contributor GA AMBA
Deploy VNetG Ingress Packet Drop Mismatch Alert Deploy_VnetGw_TunnelIngressPacketDropMismatch_Alert Network Default
deployIfNotExists
Allowed
deployIfNotExists, disabled		 1 Contributor GA AMBA
Deploy VNetG Tunnel Bandwidth Alert Deploy_VnetGw_TunnelBandwidth_Alert Network Default
deployIfNotExists
Allowed
deployIfNotExists, disabled		 1 Contributor GA AMBA
Deploy VNetG Tunnel Egress Alert Deploy_VnetGw_TunnelEgress_Alert Network Default
disabled
Allowed
deployIfNotExists, disabled		 1 Contributor GA AMBA
Deploy VNetG Tunnel Ingress Alert Deploy_VnetGw_TunnelIngress_Alert Network Default
disabled
Allowed
deployIfNotExists, disabled		 1 Contributor GA AMBA
Deploy VPNG BGP Peer Status Alert Deploy_VPNGw_BGPPeerStatus_Alert Network Default
deployIfNotExists
Allowed
deployIfNotExists, disabled		 1 Contributor GA AMBA
Deploy VPNG Bandwidth Utilization Alert Deploy_VPNGw_BandwidthUtil_Alert Network Default
deployIfNotExists
Allowed
deployIfNotExists, disabled		 1 Contributor GA AMBA
Deploy VPNG Egress Alert Deploy_VPNGw_Egress_Alert Network Default
disabled
Allowed
deployIfNotExists, disabled		 1 Contributor GA AMBA
Deploy VPNG Egress Packet Drop Count Alert Deploy_VPNGw_TunnelEgressPacketDropCount_Alert Network Default
deployIfNotExists
Allowed
deployIfNotExists, disabled		 1 Contributor GA AMBA
Deploy VPNG Egress Packet Drop Mismatch Alert Deploy_VPNGw_TunnelEgressPacketDropMismatch_Alert Network Default
deployIfNotExists
Allowed
deployIfNotExists, disabled		 1 Contributor GA AMBA
Deploy VPNG Ingress Alert Deploy_VPNGw_Ingress_Alert Network Default
disabled
Allowed
deployIfNotExists, disabled		 1 Contributor GA AMBA
Deploy VPNG Ingress Packet Drop Count Alert Deploy_VPNGw_TunnelIngressPacketDropCount_Alert Network Default
deployIfNotExists
Allowed
deployIfNotExists, disabled		 1 Contributor GA AMBA
Deploy VPNG Ingress Packet Drop Mismatch Alert Deploy_VPNGw_TunnelIngressPacketDropMismatch_Alert Network Default
deployIfNotExists
Allowed
deployIfNotExists, disabled		 1 Contributor GA AMBA
Roles used
Total Roles usage: 50
Total Roles unique usage: 1
Role Role Id Policies count Policies
Contributor b24988ac-6180-42a0-ab88-20f7382dd24c 50 Deploy Activity Log Azure FireWall Delete Alert, Deploy Activity Log NSG Delete Alert, Deploy Activity Log Route Table Update Alert, Deploy Activity Log VPN Gateway Delete Alert, Deploy AFW FirewallHealth Alert, Deploy AFW SNATPortUtilization Alert, Deploy ALB Data Path Availability Alert, Deploy ALB Global Backend Availability Alert, Deploy ALB Health Probe Status Alert, Deploy ALB Used SNAT Ports Alert, Deploy ER Direct ExpressRoute Bits In Alert, Deploy ER Direct ExpressRoute Bits Out Alert, Deploy ER Direct ExpressRoute LineProtocol Alert, Deploy ER Direct ExpressRoute RxLightLevel High Alert, Deploy ER Direct ExpressRoute RxLightLevel Low Alert, Deploy ER Direct ExpressRoute TxLightLevel High Alert, Deploy ER Direct ExpressRoute TxLightLevel Low Alert, Deploy ERG ExpressRoute Bits In Alert, Deploy ERG ExpressRoute Bits Out Alert, Deploy ERG ExpressRoute CPU Utilization Alert, Deploy ExpressRoute Circuits Arp Availability Alert, Deploy ExpressRoute Circuits Bgp Availability Alert, Deploy ExpressRoute Circuits QosDropBitsInPerSecond Alert, Deploy ExpressRoute Circuits QosDropBitsOutPerSecond Alert, Deploy PDNSZ Capacity Utilization Alert, Deploy PDNSZ Query Volume Alert, Deploy PDNSZ Record Set Capacity Alert, Deploy PDNSZ Registration Capacity Utilization Alert, Deploy PIP Bytes in DDoS Attack Alert, Deploy PIP DDoS Attack Alert, Deploy PIP Packets in DDoS Attack Alert, Deploy PIP VIP Availability Alert, Deploy VNet DDoS Attack Alert, Deploy VNetG Egress Packet Drop Count Alert, Deploy VNetG Egress Packet Drop Mismatch Alert, Deploy VNetG ExpressRoute Bits Per Second Alert, Deploy VNetG ExpressRoute CPU Utilization Alert, Deploy VNetG Ingress Packet Drop Count Alert, Deploy VNetG Ingress Packet Drop Mismatch Alert, Deploy VNetG Tunnel Bandwidth Alert, Deploy VNetG Tunnel Egress Alert, Deploy VNetG Tunnel Ingress Alert, Deploy VPNG BGP Peer Status Alert, Deploy VPNG Bandwidth Utilization Alert, Deploy VPNG Egress Alert, Deploy VPNG Egress Packet Drop Count Alert, Deploy VPNG Egress Packet Drop Mismatch Alert, Deploy VPNG Ingress Alert, Deploy VPNG Ingress Packet Drop Count Alert, Deploy VPNG Ingress Packet Drop Mismatch Alert
JSON
EPAC