Difference in the Azure Application Gateway Standard Tiers and WAF

Question

Hi,

I am struggling to find any information on the difference between Application Gateway and WAF Tiers, I have read the Microsoft Learn documents but still not able to grasp what is the benefit of using standard tier and WAF tier?

Thanks.

Answer 1

Hi @JimmySalian-2011 ,

Welcome to the Microsoft Q&A Platform. Thank you for reaching out & I hope you are doing well.
I understand that you would like to know the difference between App gateway Standard and WAF tier.

As stated by @Joe Carlyle , WAF SKU is built on standard with the added benefit of having a Firewall engine with App gateway.

This WAF leverages OWASP Core ruleset, and log/inspect/block malicious traffic.
You can create Custom Rules to allow/block any desired traffic.

You can also have a per-site WAF or per-URI WAF for a deeper customization with WAF.

This document highlights the features of our WAF Engine: https://learn.microsoft.com/en-us/azure/web-application-firewall/ag/waf-engine

Best Practices: https://learn.microsoft.com/en-us/azure/web-application-firewall/ag/best-practices

The features available in a standard SKU are listed here: Azure Application Gateway features

Kindly let us know if the above helps or you need further assistance on this issue.

Thanks,
Kapil

----------------------------------------------------------------------------------------------------------------

Please don’t forget to close the thread by clicking "Accept the answer" wherever the information provided helps you, as this can be beneficial to other community members.