Application Gateway with WAF in Detection mode logs each matched rule. However, in Prevention mode it catches only rules which are enabled. It makes sense somehow, because we don't want to have disabled rules evaluated in prevention mode, however I want to know if there are requestes which violate rules which are disabled. This is really important to monitor and adjust rule set.
So to sum up I would like to find a way to have Prevention mode for enabled rules and Detection mode for disabled rules.