301 questions with Azure Web Application Firewall tags

Sort by: Updated
0 answers

WAF rule - 100200 Malicious bots that have falsified their identity

How often is the list of Google IPs updated to avoid false positives in WAF rule '100200 Malicious bots that have falsified their identity'?

Azure Web Application Firewall
asked 2024-07-24T11:39:13.0333333+00:00
Andrius Vasiliauskas 0 Reputation points
commented 2024-07-25T02:32:44.41+00:00
ChaitanyaNaykodi-MSFT 24,666 Reputation points Microsoft Employee
0 answers

Azure OpenAi with private endpoints - Web App issue

I am currently experiencing issues after deploying an AI module into a web app. My Azure OpenAI setup includes private endpoints. The web app was tested with both public access and private endpoints. While I can view the chat box and send prompts, I…

Azure Private Link
Azure Private Link
An Azure service that provides private connectivity from a virtual network to Azure platform as a service, customer-owned, or Microsoft partner services.
492 questions
Azure Web Application Firewall
Azure OpenAI Service
Azure OpenAI Service
An Azure service that provides access to OpenAI’s GPT-3 models with enterprise capabilities.
2,637 questions
asked 2024-07-25T02:32:33.1866667+00:00
Nedda Marhoon 6 Reputation points
0 answers

Update Azure application gateway WAF rules to allow request from same ip range in short span

I have a web app hosted on AKS behind an Application Gateway with WAF. My domain is onboarded on Cloudflare. The WAF is blocking network calls to my web app with rule ID 949110. I suspect that Cloudflare is replacing the actual client IP with its own and…

Azure Application Gateway
Azure Application Gateway
An Azure service that provides a platform-managed, scalable, and highly available application delivery controller as a service.
1,011 questions
Azure Web Application Firewall
asked 2024-07-24T06:05:22.67+00:00
Prashanth Nagaraj 0 Reputation points
commented 2024-07-25T00:19:09.41+00:00
Prashanth Nagaraj 0 Reputation points
0 answers

How to preserve the Client IP that is amended by Azure Front Door, another amendment by App Gateway before reaching Azure APIM

Hi, My setup is configured with Azure Front Door + Azure WAF --> Azure App Gateway + WAF --> Azure API Management. The diagnostic data logs are kept with Azure Monitor. I am trying to configure in bound throttling policy on APIM to rate limit user…

Azure API Management
Azure API Management
An Azure service that provides a hybrid, multi-cloud management platform for APIs.
1,951 questions
Azure Front Door
Azure Front Door
An Azure service that provides a cloud content delivery network with threat protection.
630 questions
Azure Application Gateway
Azure Application Gateway
An Azure service that provides a platform-managed, scalable, and highly available application delivery controller as a service.
1,011 questions
Azure Web Application Firewall
asked 2024-07-16T00:28:41.8333333+00:00
Bi Tan 0 Reputation points
commented 2024-07-25T00:12:16.7466667+00:00
Bi Tan 0 Reputation points
0 answers

Can we add ruleId to the request header

Azure Gateway WAF - we want to add ruleId to every request header

Azure Web Application Firewall
asked 2024-07-22T16:37:44.72+00:00
Salagame, Raghavendra 1 Reputation point
commented 2024-07-24T02:44:28.9333333+00:00
Salagame, Raghavendra 1 Reputation point
2 answers

Best Methods for Diagnosing Azure Hosted Web App Communication Issues by Adjusting or Disabling Firewall Settings

Hi community, For a web app on Azure constructed using various Azure services, the design typically blocks a lot of communication for security reasons. However, to diagnose issues, it's necessary to allow inbound and outbound communication. I am…

Azure Firewall
Azure Firewall
An Azure network security service that is used to protect Azure Virtual Network resources.
612 questions
Azure Web Application Firewall
Azure Firewall Manager
Azure Firewall Manager
An Azure service that provides central network security policy and route management for globally distributed, software-defined perimeters.
89 questions
asked 2024-07-21T13:16:22.1833333+00:00
KindCompute-6524 85 Reputation points
commented 2024-07-23T08:24:58.2366667+00:00
KapilAnanth-MSFT 41,156 Reputation points Microsoft Employee
1 answer One of the answers was accepted by the question author.

new Ubuntu deployed today, still had old openssh-server, will Azure update the base container? CVE-2006-5051

I deployed a new Ubuntu 24.04 this morning. This base image right from Azure still has OpenSSH 9.6 (SSH-2.0-OpenSSH_9.6p1 Ubuntu-3ubuntu13.4), isn't that a problem? CVE-2006-5051 How many Azure containers are at risk if they were installed and not…

Azure Web Application Firewall
asked 2024-07-19T15:14:43.8766667+00:00
Paul Bent 20 Reputation points
commented 2024-07-20T03:02:25.7266667+00:00
Paul Bent 20 Reputation points
1 answer

Customize Managed Rules

Hi, I am using Application gateway with WAF V2, I am facing one issue with a user input being blocked by WAF managed rules. The backend application allows user to special characters but the request is getting blocked by WAF only. More specifically, if…

Azure Web Application Firewall
asked 2024-07-16T10:03:37.0533333+00:00
Satyam Chauhan 542 Reputation points
answered 2024-07-16T10:57:28.4766667+00:00
KapilAnanth-MSFT 41,156 Reputation points Microsoft Employee
0 answers

Azure WAF Sensitive data scrubbing and InitialBodyContents match

We have requests that have application/x-www-form-urlencoded body contents which trigger false positives for the WAF rule "URL Encoding Abuse Attack Attempt" matching on the variable InitialBodyContents . Annoyingly part of the match contains…

Azure Web Application Firewall
asked 2024-06-14T01:19:10.6533333+00:00
Smock 0 Reputation points
commented 2024-07-15T06:55:35.0433333+00:00
KapilAnanth-MSFT 41,156 Reputation points Microsoft Employee
1 answer One of the answers was accepted by the question author.

How to configure azure application gateway with my on premise server app ?

I try to configure my new application server to connect an on premise server where I installed an app. I'm not quit sure where do I configure the Public IP address from server that's is running more than one app using the same port (443). My final…

Azure Application Gateway
Azure Application Gateway
An Azure service that provides a platform-managed, scalable, and highly available application delivery controller as a service.
1,011 questions
Azure Web Application Firewall
asked 2024-07-08T13:25:26.48+00:00
Wilder Meza Meza 20 Reputation points
accepted 2024-07-09T23:46:33.0166667+00:00
Wilder Meza Meza 20 Reputation points
1 answer One of the answers was accepted by the question author.

Is there any limitation on Patch requests on Azure Application Gateway?

I have an Azure Application Gateway (WAF mode is detection) and a web application in the backend in my edge network. Everything works well, but I have an issue with a "Patch" request. When I sent this request I received: 400 Bad…

Azure Application Gateway
Azure Application Gateway
An Azure service that provides a platform-managed, scalable, and highly available application delivery controller as a service.
1,011 questions
Azure Web Application Firewall
asked 2024-07-01T00:45:53.7166667+00:00
Mohsen Akhavan 771 Reputation points
commented 2024-07-08T20:35:17.8566667+00:00
Mohsen Akhavan 771 Reputation points
1 answer

Azure Application Gateway to On Prem Service - Lock down on prem to only respond to Azure requests

Hello, We have setup Azure Application Gateway which is forwarding traffic to our on-premises server, and its working great. My question is what IP ranges or IP addresses can we setup in our on-prem firewall to lock down so that we are only responding…

Azure Application Gateway
Azure Application Gateway
An Azure service that provides a platform-managed, scalable, and highly available application delivery controller as a service.
1,011 questions
Azure Web Application Firewall
asked 2023-07-20T17:40:20+00:00
Peter D 0 Reputation points
commented 2024-07-08T13:18:19.69+00:00
Wilder Meza Meza 20 Reputation points
0 answers

How to set the exclusions for headers and header values

Wanna make exclusion for request headers and its values how to check due to what reason that request is being blocked

Azure Web Application Firewall
asked 2024-06-18T18:35:28.0266667+00:00
Nupur Patel 0 Reputation points
commented 2024-06-18T22:38:16.3566667+00:00
ChaitanyaNaykodi-MSFT 24,666 Reputation points Microsoft Employee
2 answers

Managing 200 Websites with Application Gateway and WAF Protection

Hello, I have a single server that is currently hosting over 200 websites. Is it possible to manage all these websites using an application gateway and protect them with a WAF?

Azure Application Gateway
Azure Application Gateway
An Azure service that provides a platform-managed, scalable, and highly available application delivery controller as a service.
1,011 questions
Azure Web Application Firewall
asked 2024-05-29T07:27:34.4466667+00:00
Nitin Arora 25 Reputation points
commented 2024-05-30T12:48:39.8833333+00:00
GitaraniSharma-MSFT 49,401 Reputation points Microsoft Employee
3 answers One of the answers was accepted by the question author.

Allow access through WAF only for whitelisted IPs

I have an Azure Application Gateway where I manage a few client domains. I have a few production and staging domains routed to this application gateway, which I manage where I need them to be pointed to. When I was working with the domains pointed…

Azure Application Gateway
Azure Application Gateway
An Azure service that provides a platform-managed, scalable, and highly available application delivery controller as a service.
1,011 questions
Azure Web Application Firewall
asked 2024-05-27T19:21:18.7+00:00
Raphael Pereira 20 Reputation points
accepted 2024-05-28T15:42:38.56+00:00
Raphael Pereira 20 Reputation points
1 answer

How do I configure the Azure Application Gateway / backend pool to drop requests that are blocked by the WAF as the log file indicate the request was blocked but the script ends up in the database.

requests blocked by the WAF are being forwarded to the backend API servers. How do you configure the backend pool or WAF to drop requests that are blocked by the WAF.

Azure Application Gateway
Azure Application Gateway
An Azure service that provides a platform-managed, scalable, and highly available application delivery controller as a service.
1,011 questions
Azure Web Application Firewall
asked 2024-05-16T08:21:12.23+00:00
Derek Green 0 Reputation points
commented 2024-05-28T15:39:54.6866667+00:00
ChaitanyaNaykodi-MSFT 24,666 Reputation points Microsoft Employee
0 answers

http2 compatibility

We have 2 environments were WAF is configured. In the DEV environment, its working on http2 In the UAT environment, its not working on http2. When the WAF configuration is change, it works on http1.1. I have provided some detains below (you will see…

Azure Application Gateway
Azure Application Gateway
An Azure service that provides a platform-managed, scalable, and highly available application delivery controller as a service.
1,011 questions
Azure Web Application Firewall
Azure Kubernetes Service (AKS)
Azure Kubernetes Service (AKS)
An Azure service that provides serverless Kubernetes, an integrated continuous integration and continuous delivery experience, and enterprise-grade security and governance.
1,993 questions
asked 2024-05-21T16:42:57.35+00:00
Fobuzie, Marleo 0 Reputation points
commented 2024-05-22T05:20:22.98+00:00
KapilAnanth-MSFT 41,156 Reputation points Microsoft Employee
1 answer

Configuring exclusions on Applicaiton Gateway WAF

Hello, At present we are using an Application Gateway WAFv2 (in monitor mode) for web applications hosted on the backend VMs. We want to move the WAF to prevent mode, but based on the logs collected we think many legitimate requests will be blocked,…

Azure Web Application Firewall
asked 2022-03-07T18:21:46.043+00:00
Ashish Gupta 1 Reputation point
commented 2024-05-20T17:22:02.3733333+00:00
Morgan Ecklund 0 Reputation points
1 answer One of the answers was accepted by the question author.

WAF (v2) Managed Exclusion Rule difficulty with a particular request.

Hi experts.. I have a particularly troublesome request being blocked and am seemingly unable create a suitable managed exclusion rule, although it appears that it should be possible. We have an asp.net (web forms) application that uses SSRS ReportViewer…

Azure Web Application Firewall
asked 2024-05-14T09:15:50.92+00:00
Richard 25 Reputation points
accepted 2024-05-17T23:50:35.1766667+00:00
Richard 25 Reputation points
1 answer

I want to block certain regions of a country on application gateway and not entire country how can I do that

I want to block certain regions in country based on iso code and azure only gives me option to do it for entire country. How can I implement it for a region in country

Azure Web Application Firewall
asked 2024-05-14T20:00:33.4566667+00:00
Kajal Kothari 0 Reputation points
edited an answer 2024-05-17T11:07:24.1833333+00:00
GitaraniSharma-MSFT 49,401 Reputation points Microsoft Employee