Hi @Mark Connolly ,
Welcome to the Microsoft Q&A Platform. Thank you for reaching out & I hope you are doing well.
I understand that you are trying to configure the WAF policy for Ports other than Port 80 and 443.
With App Gateway, the WAF policy is supposed to work across all the listeners, irrespective of the port.
You can also configure, per Listener WAF in App Gateway.
https://learn.microsoft.com/en-us/azure/web-application-firewall/ag/per-site-policies
You can refer to this for best practices on the App gateway WAF,
https://learn.microsoft.com/en-us/azure/web-application-firewall/ag/best-practices
Other docs that may come in handy are:
- https://learn.microsoft.com/en-us/azure/web-application-firewall/ag/ag-overview
- https://learn.microsoft.com/en-us/azure/web-application-firewall/ag/application-gateway-crs-rulegroups-rules?tabs=owasp32
Thanks,
Kapil
----------------------------------------------------------------------------------------------------------------
Please don’t forget to close the thread by clicking "Accept the answer" wherever the information provided helps you, as this can be beneficial to other community members.