expressRoutePorts
Summary
Details
The Admin State of both Links of an ExpressRoute Direct should be in Enabled state
Impact: High Category: High Availability
APRL GUID: 60077378-7cb1-4b35-89bb-393884d9921d
Description:
In Azure ExpressRoute Direct, the "Admin State" indicates the administrative status of layer 1 links, showing if a link is enabled or disabled, effectively turning the physical port on or off.
Potential Benefits:
Ensures optimal connectivity.
Learn More:
ARG Query:
Click the Azure Resource Graph tab to view the query
// Azure Resource Graph Query
// Find all Express Route Directs that do not have Admin State of both Links Enabled
resources
| where type == "microsoft.network/expressrouteports"
| where properties['links'][0]['properties']['adminState'] == "Disabled" or properties['links'][1]['properties']['adminState'] == "Disabled"
| project recommendationId = "60077378-7cb1-4b35-89bb-393884d9921d", name, id, tags, param1 = strcat("Link1AdminState: ", properties['links'][0]['properties']['adminState']), param2 = strcat("Link2AdminState: ", properties['links'][1]['properties']['adminState'])
Ensure you do not over-subscribe an ExpressRoute Direct
Impact: High Category: Scalability
APRL GUID: 0bee356b-7348-4799-8cab-0c71ffe13018
Description:
Provisioning ExpressRoute circuits on a 10-Gbps or 100-Gbps ExpressRoute Direct resource up to 20-Gbps or 200-Gbps is possible but not recommended for resiliency. If an ExpressRoute Direct port fails, and circuits are using full capacity, the remaining port won't handle the extra load.
Potential Benefits:
Improves resilience during port failures
Learn More:
ARG Query:
Click the Azure Resource Graph tab to view the query
// Azure Resource Graph Query
// Find all Express Route Directs that are over subscribed
resources
| where type == "microsoft.network/expressrouteports"
| where toint(properties['provisionedBandwidthInGbps']) > toint(properties['bandwidthInGbps'])
| project recommendationId = "0bee356b-7348-4799-8cab-0c71ffe13018", name, id, tags, param1 = strcat("provisionedBandwidthInGbps: ", properties['provisionedBandwidthInGbps']), param2 = strcat("bandwidthInGbps: ", properties['bandwidthInGbps'])
Configure monitoring and alerting for ExpressRoute Ports
Impact: High Category: Monitoring and Alerting
APRL GUID: 55815823-d588-4cb7-a5b8-ae581837356e
Description:
Use Network Insights for monitoring ExpressRoute Port light levels, bits per second in/out, and line protocol. Set alerts based on Azure Monitor Baseline Alerts for light levels, bits per second in/out, and line protocol exceeding specific thresholds.
Potential Benefits:
Enhanced network performance and health
Learn More:
ARG Query:
Click the Azure Resource Graph tab to view the query
// under-development