Hi @metalheart ,
Welcome to the Microsoft Q&A Platform. Thank you for reaching out & I hope you are doing well.
I understand that you are trying an add a large number of Custom regex rules to an AFD WAF Policy.
At present, a single WAF policy supports only up to 5 Custom rules with regular expressions.
Addressing your question,
- Users should be able to configure as many rules as the Limits support.
- WAF on AFD is a global and centralized solution, so there shouldn't be any performance issues.
- Refer: https://learn.microsoft.com/en-us/azure/web-application-firewall/afds/afds-overview
- With your requirement of having to block thousands of values, you will hit the limits.
One solution I can think of is, if the IDs are GUIDs, or are similarly long/unique, then use the Contains operator instead of Regex and add each id=GUID string as a separate match value. The idea here is that you will have more options
Thanks,
Kapil
----------------------------------------------------------------------------------------------------------------
Please don’t forget to close the thread by clicking "Accept the answer" wherever the information provided helps you, as this can be beneficial to other community members.