Current Behavior:
The diagnostic settings are configured to send all logs to the Log Analytics workspace. However, it has been observed that the data is being stored in the azure diagnostics table, which is considered a legacy.
Expected Behavior:
According to the Azure documentation, logs should be stored in dedicated tables to make log management more efficient and structured. Reference: Dedicated Tables for Azure Firewall Logs.
Possible Solution:
To ensure logs are stored in dedicated tables, update the configuration settings to specify the destination type as "Dedicated"
Current Behavior: The diagnostic settings are configured to send all logs to the Log Analytics workspace. However, it has been observed that the data is being stored in the azure diagnostics table, which is considered a legacy.
Expected Behavior: According to the Azure documentation, logs should be stored in dedicated tables to make log management more efficient and structured. Reference: Dedicated Tables for Azure Firewall Logs.
Possible Solution: To ensure logs are stored in dedicated tables, update the configuration settings to specify the destination type as "Dedicated"