Update Azure application gateway WAF rules to allow request from same ip range in short span

Prashanth Nagaraj 0 Reputation points
2024-07-24T06:05:22.67+00:00

I have a web app hosted on AKS behind an Application Gateway with WAF. My domain is onboarded on Cloudflare. The WAF is blocking network calls to my web app with rule ID 949110. I suspect that Cloudflare is replacing the actual client IP with its own and splitting requests from a single IP into multiple Cloudflare IPs, causing the WAF to increase anomaly scores and block requests.

How can I address this issue effectively to ensure legitimate traffic is not blocked?

Thank you.

Azure Application Gateway
Azure Application Gateway
An Azure service that provides a platform-managed, scalable, and highly available application delivery controller as a service.
1,079 questions
Azure Web Application Firewall
{count} votes

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.