Azure-docs: capture private traffic on tunnel interface instead of encrypted public to public traffic

@jackchenquest Thanks for the feedback. We are investigating the issue and will update you shortly.

@jackchenquest, Appreciate your patience. I have captured the similar log in my test environment. But It should capture both encrypted and plaintext packets. It will capture all packets going into/from VNETs. Each packet from VNet VMs to on premises should result in 2 packets: one from VNet (not encrypted) and one encrypted packet.

SS:

Thanks SubhashVasarapu! Not sure why I only got encrypted packet, I will retest it.

@jackchenquest, are we good to close this issue? For any kind of troubleshooting scenerios and technical help, please post your quesries on Microsoft Q&A platform for better reach. GitHub platform concentrates more on improvising Azure Docs in case there is a need for Doc enhancement.

Sure.

It looks like you need to specify a filter to get any inner packets to show up in the capture.

You can use a "catch-all" filter from https://docs.microsoft.com/en-us/powershell/module/az.network/start-azvirtualnetworkgatewaypacketcapture?view=azps-4.8.0#example-3 to get all the inner traffic:

$a = "{`"TracingFlags`": 11,`"MaxPacketBufferSize`": 120,`"MaxFileSize`": 500,`"Filters`" :[{`"CaptureSingleDirectionTrafficOnly`": false}]}"
Start-AzVirtualnetworkGatewayPacketCapture -ResourceGroupName "PktCaptureTestSite2RG" -Name "PktCaptureTestSite2VNG" -FilterData $a

In my opinion the documentation can be improved to make this clearer.