![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(118.4, 57.99999999999999%, 21%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EKK%3C/text%3E%3C/svg%3E)
Azure Web Application Firewall
An Azure service that provides protection for web apps.
289 questions
Hello @Kajal Kothari ,
Welcome to Microsoft Q&A Platform. Thank you for reaching out & hope you are doing well.
I understand that you would like to know how to block certain regions of a country on your Application gateway and not an entire country.
Azure Web Application Firewall geomatch custom rules let you match web requests to the geographic location of where they come from. Geomatch custom rules can also help you follow data sovereignty and privacy laws by limiting access to your web applications based on the location of the people using them.
But the countries/regions available to select in the WAF rules are provided as Two-letter country or region codes which maps to a country or region in the below list.
When creating a geomatch rule, the selectors can be any of the two-digit country/region codes provided in the above list but cannot be broken down further.
You can refer to the examples of geomatch rule usage in the below document:
https://learn.microsoft.com/en-us/azure/web-application-firewall/geomatch-custom-rules-examples
May I know what exactly you are trying to achieve with your WAF?
Kindly let us know if the above helps or you need further assistance on this issue.
Please "Accept the answer" if the information helped you. This will help us and others in the community as well.