The Azure Network Watcher – IP Flow Verify Tool is a feature of Azure Network Watcher that allows you to test the flow of network traffic between two virtual machines (VMs) in an Azure virtual network. It enables you to verify that traffic is allowed to flow between VMs as expected, and to diagnose and troubleshoot network issues.
The IP Flow Verify Tool works by creating a test packet that simulates traffic between the source and destination VMs. The packet is sent from a third VM that is part of the same virtual network as the source and destination VMs. The test packet is sent to the Network Security Group (NSG) of the destination VM, which then allows or denies the traffic based on the NSG rules.
The IP Flow Verify Tool provides detailed information about the test packet and the network flow, including the protocol used, the source and destination IP addresses, the ports used, and the time it takes for the packet to reach its destination. The results of the test can help you identify network configuration issues or security group misconfigurations that may be preventing traffic from flowing between VMs.
To use the IP Flow Verify Tool, you must have Azure Network Watcher enabled in your subscription and have the necessary permissions to use it. You can access the tool through the Azure portal or the Azure CLI. You will need to specify the source and destination VMs, the source and destination IP addresses and ports, and any additional parameters necessary for the test.
Overall, the Azure Network Watcher – IP Flow Verify Tool is a valuable tool for testing and diagnosing network issues in Azure virtual networks. It enables you to verify that network traffic is flowing as expected and to identify and troubleshoot any issues that may be preventing traffic from flowing between VMs.