0

Is there any way we can scan request for < max request body size?, otherwise we want to bypass scan for request with contain attachment more than defined max size. I tried custom rule but it didn't work

enter image description here

We need to define custom rules or perform other configuration in Azure WAF to increase response time.

Please let me know do we have any configuration or custom rules to achieve this functionality.

SagarT
  • 13
  • 1
  • 8
  • ...doing that kinda defeats the whole point of WAF. – Dai Aug 14 '22 at 09:03
  • yes but WAF took more time to scan whole attachment more than 200MB size, because of this we want some, configuration to bypass it. We have already implemented backend business logic to find security risk in attachment – SagarT Aug 14 '22 at 09:07
  • BTW, not all requests will have a `Content-Length` header: it's common for large request bodies to be _streamed_ and neither the client nor server has an idea how long the request will actually be. – Dai Aug 14 '22 at 09:08
  • we send request with attachment in streamed format and another application through which we send request it always contain content-length. – SagarT Aug 14 '22 at 09:16

0 Answers0