Edit

Share via

Work with a virtual network TAP using the Azure portal

  • Article

Azure virtual network TAP (Terminal Access Point) allows you to continuously stream your virtual machine network traffic to a network packet collector or analytics tool. The collector or analytics tool is provided by a network virtual appliance partner. For a list of partner solutions that are validated to work with virtual network TAP, see partner solutions.

Important

Virtual network TAP is now in Public Preview. For more information, see the Overview article.

Before you begin

Before you create a virtual network TAP resource, review the following items:

  • Read the prerequisites in the Overview article before you create a virtual network TAP resource.
  • You must sign in to Azure with an account that has the appropriate permissions.

Create a virtual network TAP resource

The following steps show you how to create a virtual network TAP resource using the Azure portal.

In the portal, select Create to open the Virtual network terminal access points page.

Screenshot of virtual network tap Azure portal showing how to start creating a virtual network TAP resource.

  1. Select your subscription ID.
  2. Select the Resource Group for your virtual network TAP resource.
  3. Give your virtual network TAP resource a name.
  4. Select the Azure region for your virtual network TAP resource. The destination and source resource must be in the same region as your virtual network TAP resource.
  5. Next, click Select destination resource to open the Add a destination page.

Add a destination resource

A virtual network TAP resource can only have a single destination resource and it must be in the same region as the virtual network TAP resource.

Screenshot of virtual network tap Azure portal showing how to add destination resource for mirrored traffic.

Use the following steps to add a destination resource.

  1. Select between network interface or a load balancer.
  2. Filter for your desired destination resource. You can filter by using the search bar.
  3. Select your destination resource.
  4. After you specify your destination resource, click Select to open the Add source network interfaces page.

Add a source resource

You can have multiple sources per virtual network resource. If you have multiple sources, traffic is mirrored to the same destination resource. Sources must be in the same region as the virtual network TAP resource.

Screenshot of virtual network tap Azure portal showing how to add mirrored traffic source.

Configure the following settings to add a source resource:

  1. Filter for your desired source network interface.
  2. Select the source network interface.
  3. Click Add.
  4. Click Review and Create to deploy your virtual network TAP resource.

Next steps

Learn how to Create a virtual network TAP using CLI.