WAF policy on application gateway to limit access to only few IP ranges ?
Hi All, Would you mind to help me to configure my application gateway with WAF to limit access to one of my web apps. I would like to allow traffic to this web apps from only few IP ranges. Do you have any idea to achieve this requirement Thank…
![](https://techprofile.blob.core.windows.net/images/dD2P7vFmX0-Jossk0WLwZg.png?8D895D)
Altough I disable the Rules in the WAF still appears matches to this particular rules.
Since some weeks, althoug I have some rules disable in the Web Application Policies, the logs are still showing matching in this rules. Is this a new behaviour or there is somehting wrong?.
![](https://techprofile.blob.core.windows.net/images/dD2P7vFmX0-Jossk0WLwZg.png?8D895D)
Difference between WAF in Application Gateway and WAF Policy assigned to Application Gateway
If I create a new Azure Application Gateway, I can enable Web Application Firewall via the Settings | Web application firewall page. e.g. If I do that, I don't see a separate WAF resource created, and I also don't see a way to do things…
![](https://techprofile.blob.core.windows.net/images/5fAcgAAAAwAAAAAAAAAAAA.png?8D7FB8)
Route API(Hosted on a Azure VM) through App Gateway - WAF || No API Managemennt Service to use
Hi Support team., Use Case : I have Host couple of my API's on a Azure VM and now I want to route the inbound and outbound traffic of Accessing API via. Application Gateway WAF., question for the same are as follows.: Is it possible to achieve…
web app model deployment
I am deploying my prediction model as web app for first time in Azure through github actions step. I can see the deployment process is successful in github actions window. When I browse my app from azure window, it is not connecting to my web app.…
how to deploy container instaces to loadbalancer, CDN, serve static assets fro blob
i am new to azure I was using AWS cloudfront,Fargate,application loadbalancer, S3 how can i achieve the same , or is there any improved way to do in azure? actually i was using cloudfront which will connect to s3 backend for static files(reactjs…
Firewall Ports for Azure connection
Hello, I work in an office and we are moving to a cloud based PM software. The software is hosted on Azure servers and I am wondering what firewall ports should be opened? I am hoping to ensure the fastest and secure connection while making sure the…
Azure Web Application Firewal and special characters
Hello Q&A, I`m having issues adding special characters such as À à È è to the WAF exclusion lists. Getting the following error message.
Web Application Firewall - Log on blocked IPs
Im want to see the amount of blocked IPs and how many requests each have made from the logs on the Application Gateway + Web Application Firewall. I have custom rules use, geo-blocking and IP blocking. But would expect these IP`s being blocked by the…
Domain Limits
I have 2 IIS servers on Azure that present content based on the domain name. 280 domains are pointed to it at the moment on our current WAF solution. Looking at the App Gateway WAF v2 but I'm not sure if it can support all the domain names. For SSL I…
Azure Web Applicaiton Firewall CDN Logs?
I have implemented WAF with CDN. The WAF is blocking more than it should. I was wondering where I can find/enable the logs for it to see what rule is blocking my requests? I know there is a logs section in AFD where I view this information but I…
![](https://techprofile.blob.core.windows.net/images/yKB9jaK8cUe8hCbN1HJcwQ.png?8D8475)
How to setup DNS to my azure Cloud
I've owned a domain Siera.xyz and went to a domain provider and changed the DNS to point to Azure records. Coming back to azure and setup the domain siera.xyz to point to the local web VM but when I nslookup and browse the URL siera.xyz it didn't…
Does Front Door WAF Exclusions work with POST body arguments?
I'm trying to exclude a body post argument from triggering a default set rule - https://learn.microsoft.com/en-us/azure/web-application-firewall/afds/waf-front-door-exclusion In the form, the input name is "content". I've setup an exclusion…
Fearture differences of WAF in CDN, Frontdoor and Application gateway
I cannot find a good feature comparison between the WAF's that can be set up in Application Gateway (v1 and v2 AND its different states - 1, 2 and 3), Frontdoor and CDN. Features like, rate limiting, bot detection, geo blocking, etc. Also if I…
![](https://techprofile.blob.core.windows.net/images/dD2P7vFmX0-Jossk0WLwZg.png?8D895D)
WAFv2 Supporting TLS 1.3 for Lucky13 Vulnerability Fix
Hi Team, Need urgent help with documentation regarding fixing of Lucky-13 Vulnerability [CVE-2013-0169] raised for Azure WAFv2 which is impacting Go-Live for Customer. As per the recommendation, it requires TLS 1.3 to fix but WAF v2 does not support…
![](https://techprofile.blob.core.windows.net/images/kH_59oPjz0GW0oKsmGS3Jw.png?8D83F7)
![](https://techprofile.blob.core.windows.net/images/dD2P7vFmX0-Jossk0WLwZg.png?8D895D)
Securing Single Web App.
I currently have a single Web App and Durable Functions, 2 VMs and 1 Azure SQL Database and 1 Cosmos DB. I wanted to know what is the best approach to secure the Web App. I have read WAF, or WAF with Application Gateway or Front Door. I would need…
Secure Power BI Web App
We have installed PowerBI Gateway in our VM which is secured by firewall. The PowerBI Web Interface will be accessed by an external vendor, and the data to the PowerBI will be served by the external vendor. In other words, PowerBI in one domain will be…
Builtin Azure Service that automatically updates the attack signature heuristically ?
Hi Experts, We have the need to secure the Application Gateway and hundreds of API exposed to the Internet as part of our production environment, Using the existing builtin, Azure services, How to make it secure from Unknown Threat or 0-day attack…
![](https://techprofile.blob.core.windows.net/images/WsWYoGdWukeBW66msAr6qQ.png?8D8128)
![](https://techprofile.blob.core.windows.net/images/Nd_pi7-IHkuDC3BVgl0RFQ.png?8D81F2)
Protecting a webapp within a Standard App Service plan, using a virtual firewall appliance, rather than an Application Gateway
We have a webapp (a REST API service) that is sitting in a S1 App Service plan. We are protecting the webapp with a WAF policy assigned to a listener on an Application Gateway v2. The WAF policy only protects this one webapp. We have run into a…
WAF Policy
Just starting to learn about WAF policies. If I add a listener to the WAF policy, do I need to remove that same listener from list in the WAF itself? Or does the WAF policy override any basic config within the WAF? Thanks!