WAF blocking legit file upload

Question

WAF blocking legit file upload

Santhya 60

Hi,

I am facing an issue trying to upload a file, receiving 403 forbidden error. I can successfully upload the file by bypassing appgw and with WAF detection mode.

The file is taken as base64 and the error i get from appgw logs is "ruleId":"941130". I have added this rule in exclusion list with match patter as ReqArgname starts with Base64 but its not working and still blocking the file upload.

Could you let me know how to customize the exclusion rule?

GitaraniSharma-MSFT 39,431 Reputation points Microsoft Employee

2023-08-31T09:00:50.1033333+00:00

Hello @Santhya ,

Welcome to Microsoft Q&A Platform. Thank you for reaching out & hope you are doing well.

I understand that your Azure WAF is blocking a file upload and even with exclusion rule, it is not working, and you would like to know how to customize the exclusion rule to allow the file upload.

Could you please share the WAF log which shows the block, so that we can formulate an exclusion rule for it?

Regards,

Gita
GitaraniSharma-MSFT 39,431 Reputation points Microsoft Employee

2023-09-07T15:29:37.3033333+00:00

Hello @Santhya , could you please share the requested details for further investigation/discussion on this issue?
Santhya 60 Reputation points

2023-09-12T08:36:02.0666667+00:00

Hi @GitaraniSharma-MSFT

By using waf logs, we have customised the rule and added to exclusion list, thanks for following up
GitaraniSharma-MSFT 39,431 Reputation points Microsoft Employee

2023-09-12T10:33:57.9833333+00:00

Thank you for the update, @Santhya . I've summarized the same below as an answer. Please don’t forget to close the thread by clicking "Accept the answer".

GitaraniSharma-MSFT 39,431 Reputation points Microsoft Employee

2023-08-31T09:00:50.1033333+00:00

Hello @Santhya ,

Welcome to Microsoft Q&A Platform. Thank you for reaching out & hope you are doing well.

I understand that your Azure WAF is blocking a file upload and even with exclusion rule, it is not working, and you would like to know how to customize the exclusion rule to allow the file upload.

Could you please share the WAF log which shows the block, so that we can formulate an exclusion rule for it?

Regards,

Gita
GitaraniSharma-MSFT 39,431 Reputation points Microsoft Employee

2023-09-07T15:29:37.3033333+00:00

Hello @Santhya , could you please share the requested details for further investigation/discussion on this issue?
Santhya 60 Reputation points

2023-09-12T08:36:02.0666667+00:00

Hi @GitaraniSharma-MSFT

By using waf logs, we have customised the rule and added to exclusion list, thanks for following up
GitaraniSharma-MSFT 39,431 Reputation points Microsoft Employee

2023-09-12T10:33:57.9833333+00:00

Thank you for the update, @Santhya . I've summarized the same below as an answer. Please don’t forget to close the thread by clicking "Accept the answer".

Answer 1

Hello @Santhya ,

I understand that your Azure WAF was blocking a file upload and even with exclusion rule, it was not working, and you wanted to know how to customize the exclusion rule to allow the file upload.

I requested you to share the WAF log which shows the block, so that we can formulate an exclusion rule for it.

However, you provided an update that by using WAF logs, you were able to customize the rule and added an exclusion list, which is working now.

Kindly let us know if you need further assistance on this issue.

Please don’t forget to close the thread by clicking "Accept the answer".

WAF blocking legit file upload

1 answer

Activity