Stack Overflow
Stack Overflow

Questions tagged [azure-waf]

Azure Web Application Firewall adds better web application security to layer 7 Azure Application Gateway service and is available in all Azure public regions.

72 questions
0
votes
1 answer

Azure Application GW WAF custom rule not working

I have an App GW WAF v2 where I need to set up a custom rule to check for the presence of a Request Header. I couldn't get it to work. So next I set up a very simple check. "customRules":[{ "name":"blockTEST", "priority":1, …
JakeUT
  • 359
  • 1
  • 4
  • 16
0
votes
1 answer

How can I filter out custom rules from Azure WAF logs?

I am using the following query to monitor Azure WAF, it works fine but I want to filter out custom rule hits from the query and only show blocks by MSFT Default Rulesets but I cannot find how to do that The following query show blocks from custom…
Matt Douhan
  • 677
  • 3
  • 13
0
votes
1 answer

Azure Application Gateway WAF Policy Custom Rule Update

I have an Application Gateway WAF policy. I want to update the existing custom rule by adding another IP address. How can I do this dynamically from Powershell or Azure CLI?
Souvik Saha Choudhury
  • 11
  • 4
0
votes
1 answer

Terraform Error: Failed to query available provider packages

I'm trying to deploy a simple infrastructure in Azure through Terraform, the infrastructure is made of an Application Gateway (with Web Application Firewall, so the WAF_v2 version) with two virtual machines in the backend. At the beginning I have…
Gregory
  • 75
  • 1
  • 7
0
votes
1 answer

Update Azure FrontdoorPremium Web Application Firewall Policy by API

I'm trying to update an Frontdoor WAF policy by API following the article in the link below but I'm running into several issues. -Article seems to be focused on Frontdoor Classic, not premium, so the json in the article doesn't work. -Adding an…
Jeremy
  • 11
  • 1
0
votes
1 answer

Azure WAF V2 false positive SQL Injection attacks on form entry data

We are using Azure ASE v3 to host our web app with Azure Application Gateway and WAF V2. We have been getting quite a lot of false positives on data our users enter into a form in the app. For example "Matched Data": in ( found within…
savreline
  • 131
  • 1
  • 7
0
votes
2 answers

Access Denied error on mutual authentication in Application Gateway v2 and Azure App Service

Ref1: enter link description here Ref2: enter link description here I've implemented mutual (certificate) authentication and I hosted my app on the Azure App service. When I open directly my app URL…
Shadi
  • 193
  • 2
  • 12
0
votes
2 answers

How to create WAF exclusion for specific HTTP header value

We have an OWASP rule that is wrongfully being hit for a specific website, say xyz.com How can we create an exclusion in the Azure WAF policy for that rule only for this specific website? I was trying to make an exclusion based on the Host header…
EsTeGe
  • 2,975
  • 5
  • 28
  • 42
0
votes
0 answers

Dynatrace RUM and Azure WAF

Here is the meeting summary of the incident i am having: Dynatrace RUM Issue Summary: All requests to the backend come over the azure firewall and are routed to the application gateway (WAF in detection mode), and finally to the backend. We tried to…
leovigildorex
  • 11
  • 2
0
votes
1 answer

Azure WAF custom rule to block all PHP requests

I have a Application Gateway with WAF in front of several applications (WebAPI, FunctionApp). My application are all written for .NET6+. I see in my logs a lot of requests to PHP files. Most likely these are scripts to check for vulnerabilities. I…
Paul Meems
  • 3,002
  • 4
  • 35
  • 66
0
votes
1 answer

Azure Application Gateway Timeout #long running process

We are using Azure Application Gateway with WAF. We have configured a timeout of 3600 seconds, and we performed the following scenario with Azure WAF and without WAF: With Azure: The application runs around 1 hour and then shows 504 Error. And…
Parth Mehta
  • 1
  • 2
0
votes
1 answer

Azure WAF - what's the difference among allow, log and disable?

Allow action will log requests. Log action will log requests. I don't know what's the difference between them. If I don't want the rule to block requests. Disable it and change its action to Allow, which is better?
Jess Chen
  • 3,136
  • 1
  • 26
  • 35
0
votes
0 answers

Allowing HTTP Header Content Type */* in Azure WAF Rules

I am trying to call the Azure-hosted API endpoint using a 3rd party application. Application sends the HTTP request with the header values ContentType = "*/*"; Azure Application Gateway WAF blocks the request showing the below diagnostics logs. I am…
Harsha W
  • 3,162
  • 5
  • 43
  • 77
0
votes
2 answers

Azure Applicatoin Gateway WAF managed rule exclusion remove cli command not working as expected

Configured Azure Application Gateway with WAF enabled, trying to remove waf managed rule exclusion using az network application-gateway waf-policy managed-rule exclusion rule-set remove command. Command executed successfully. But when try to…
Rajakumar Babu
  • 117
  • 2
  • 9
0
votes
0 answers

How to know whether the request is from bot? WAF

I want to know how Azure WAF identifies whether the request is from bots. I don't want to let WAF kill some reasonable requests.
Jess Chen
  • 3,136
  • 1
  • 26
  • 35
1 2
3
4 5