KQL snippet: correlate an Azure Functions private HTTP endpoint
A short query to separate DNS, private access, Functions runtime and application exceptions during a private HTTP incident.
Read snippet
Snippets
Small technical pieces, easy to reuse.
Commands, queries, configuration fragments and short notes that are narrow enough to copy, adapt and validate quickly.
Snippets RSSKQL snippet: correlate AKS private ingress and application logs
A short query to read ingress controller and application logs together when a private AKS route returns 502, timeouts or no endpoints.
Read snippetKQL snippet: diagnose Container Apps private ingress and revisions
A short query to correlate Azure Container Apps system and console logs when private ingress, probes or revision traffic fail.
Read snippetKQL snippet: correlate WAF and APIM on an Azure private API
A short query to see whether a private API request is blocked by Application Gateway WAF, received by APIM or missing from the expected path.
Read snippetKQL snippet: diagnose Key Vault denial with managed identity
A short query to separate identity denial, network path and source address when an Azure workload can no longer access Key Vault.
Read snippetKQL snippet: track synthetic probes for an Azure private path
A short query to track synthetic probe failures and separate DNS, TLS, WAF or Application Gateway symptoms on an Azure private path.
Read snippetAzure snippet: audit WAF custom rule priorities
A short command to list custom rules in an Azure WAF policy with priority, action and type before an urgent change.
Read snippetKQL snippet: detect authentication errors after secret rotation
A short query to watch 401, 403, and 500 errors after rotating an application secret or service identity.
Read snippetAzure snippet: detect Private Endpoint DNS drift
A short check to compare the expected DNS chain, returned private address, and test path from a workload or CI runner.
Read snippetAzure snippet: check Private Endpoint DNS resolution
A short sequence to confirm that an Azure service exposed through Private Endpoint resolves to a private address from the right network.
Read snippetKQL snippet: list Azure WAF blocked URIs quickly
A short KQL query to identify the most blocked URIs by Azure Web Application Firewall on Application Gateway.
Read snippetTerraform snippet: diagnose a stuck state lock before force-unlock
A short procedure to qualify a stuck Terraform lock, confirm that no apply is still active, and restart with a clean plan.
Read snippet