Exclude certain URLs from being blocked by wAF/Frontdoor azure

WsCi 1 Reputation point

we need to exclude a certain Paths from being checked by WAF.
A certain policy rule is blocking our normal traffic to a particular webpage within our site.
We dont want to disable the rule to the whole site, but to only certain pages within the site
Site: https://xxx.yyy.com and the exception would be for ex related to: POST URL: https://xxx.yyy.com/ZZZ

Azure Front Door
Azure Front Door
An Azure service that provides a cloud content delivery network with threat protection.
598 questions
Azure Web Application Firewall
{count} votes

1 answer

Sort by: Most helpful
  1. suvasara-MSFT 10,016 Reputation points

    @WsCi , This should be possible with AFD WAF exclusion lists. WAF exclusion lists allow you to omit certain request attributes from a WAF evaluation. A common example is Active Directory inserted tokens that are used for authentication or password fields. Such attributes are prone to contain special characters that may trigger a false positive from the WAF rules.

    Have a look at this example for clear understanding.


    Please do not forget to "Accept the answer" wherever the information provided helps you to help others in the community.