Azure Idle virtual network gateways

Rule Description

Rule Code: Azure-VNG-01

Identify the virtual network gateways that have been idle for more than 90 days.

Because these gateways are billed hourly, you should consider reconfiguring or deleting them if you don't intend to use them anymore.

Audit / Verification

To determine if you have any idle virtual network gateways, perform the following operations:

Step 1: Sign in to the Azure Management Console. Choose the Azure subscription and navigate to All resources blade.

Step 2: From the Type filter box, select Virtual network gateway. Click on the name of the Virtual network gateway that you want to examine.

Step 3: On the Overview panel & Activities Log, check Show Data chart and Log to verify to make sure that Virtual network gateway is not working.

If the Virtual network gateway is not used anymore, the resource can be safely removed from the selected subscription.

Step 4: Repeat steps for each virtual network gateways available in the selected Azure subscription.

Step 5: Repeat steps for each subscription created within your Microsoft Azure cloud account.