WAF Custom Rule not working
I am trying to block an end point from my WAF using a custom rule. My waf is in preventive mode and I tried creating the custom rule both manually through portal and also using powershell script. Seems it is not blocking the end point. Could you please provide some guidance on the same ? Please see the attachment for more details.
Hello @Arun P , Welcome to the Microsoft Q&A forum.
In such scenarios we have usually observed that the WAF policy is not assigned to the correct listener. Can you please validate if the WAF policy is linked to the correct listener of your Application Gateway? If this is not the case, can you please explain your workflow in more detail? like which URL you are trying to deny and if there are any redirects etc set-up. Thank you!
Sign in to comment
Hi @ChaitanyaNaykodi-MSFT I have associated a path (route path) in the waf policy. I am trying to block an endpoint from public access. URL will be like https://xxxxx.com/v7_11/auth/basicoauth2
Hello @Arun P , Thank you for sharing additional details. I do not see any issues in the custom rule applied above. I think creating a support ticket with us will be better option in this case. If you do not have a support plan, can you please refer to my private message below. Thank you!