Exclude certain URLs from being blocked by wAF/Frontdoor azure

WsCi 1 Reputation point
2021-02-01T09:05:49.383+00:00

Hello,
we need to exclude a certain Paths from being checked by WAF.
A certain policy rule is blocking our normal traffic to a particular webpage within our site.
We dont want to disable the rule to the whole site, but to only certain pages within the site
Site: https://xxx.yyy.com and the exception would be for ex related to: POST URL: https://xxx.yyy.com/ZZZ

Azure Front Door
Azure Front Door
An Azure service that provides a cloud content delivery network with threat protection.
578 questions
Azure Web Application Firewall

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. suvasara-MSFT 10,006 Reputation points
    2021-02-03T09:58:00.367+00:00

    @WsCi , This should be possible with AFD WAF exclusion lists. WAF exclusion lists allow you to omit certain request attributes from a WAF evaluation. A common example is Active Directory inserted tokens that are used for authentication or password fields. Such attributes are prone to contain special characters that may trigger a false positive from the WAF rules.

    Have a look at this example for clear understanding.

    ----------

    Please do not forget to "Accept the answer" wherever the information provided helps you to help others in the community.