Azure Web Application Firewal and special characters
Hello Q&A, I`m having issues adding special characters such as À à È è to the WAF exclusion lists. Getting the following error message.
Web Application Firewall - Log on blocked IPs
Im want to see the amount of blocked IPs and how many requests each have made from the logs on the Application Gateway + Web Application Firewall. I have custom rules use, geo-blocking and IP blocking. But would expect these IP`s being blocked by the…
Domain Limits
I have 2 IIS servers on Azure that present content based on the domain name. 280 domains are pointed to it at the moment on our current WAF solution. Looking at the App Gateway WAF v2 but I'm not sure if it can support all the domain names. For SSL I…
Azure Web Applicaiton Firewall CDN Logs?
I have implemented WAF with CDN. The WAF is blocking more than it should. I was wondering where I can find/enable the logs for it to see what rule is blocking my requests? I know there is a logs section in AFD where I view this information but I…
How to setup DNS to my azure Cloud
I've owned a domain Siera.xyz and went to a domain provider and changed the DNS to point to Azure records. Coming back to azure and setup the domain siera.xyz to point to the local web VM but when I nslookup and browse the URL siera.xyz it didn't…
Does Front Door WAF Exclusions work with POST body arguments?
I'm trying to exclude a body post argument from triggering a default set rule - https://learn.microsoft.com/en-us/azure/web-application-firewall/afds/waf-front-door-exclusion In the form, the input name is "content". I've setup an exclusion…
Fearture differences of WAF in CDN, Frontdoor and Application gateway
I cannot find a good feature comparison between the WAF's that can be set up in Application Gateway (v1 and v2 AND its different states - 1, 2 and 3), Frontdoor and CDN. Features like, rate limiting, bot detection, geo blocking, etc. Also if I…
WAFv2 Supporting TLS 1.3 for Lucky13 Vulnerability Fix
Hi Team, Need urgent help with documentation regarding fixing of Lucky-13 Vulnerability [CVE-2013-0169] raised for Azure WAFv2 which is impacting Go-Live for Customer. As per the recommendation, it requires TLS 1.3 to fix but WAF v2 does not support…
Securing Single Web App.
I currently have a single Web App and Durable Functions, 2 VMs and 1 Azure SQL Database and 1 Cosmos DB. I wanted to know what is the best approach to secure the Web App. I have read WAF, or WAF with Application Gateway or Front Door. I would need…
Secure Power BI Web App
We have installed PowerBI Gateway in our VM which is secured by firewall. The PowerBI Web Interface will be accessed by an external vendor, and the data to the PowerBI will be served by the external vendor. In other words, PowerBI in one domain will be…
Builtin Azure Service that automatically updates the attack signature heuristically ?
Hi Experts, We have the need to secure the Application Gateway and hundreds of API exposed to the Internet as part of our production environment, Using the existing builtin, Azure services, How to make it secure from Unknown Threat or 0-day attack…
Protecting a webapp within a Standard App Service plan, using a virtual firewall appliance, rather than an Application Gateway
We have a webapp (a REST API service) that is sitting in a S1 App Service plan. We are protecting the webapp with a WAF policy assigned to a listener on an Application Gateway v2. The WAF policy only protects this one webapp. We have run into a…
WAF Policy
Just starting to learn about WAF policies. If I add a listener to the WAF policy, do I need to remove that same listener from list in the WAF itself? Or does the WAF policy override any basic config within the WAF? Thanks!
Application Gateway and Geo Location Setup
Hey MS world, Our Goal is to restrict access to our Web Application by Country. Basically deny all, and allow access to ONE country. Everything worked great utilizing NSG group with and Dev Team to restrict access and attacks. We installed the…
Vulnerability scan shows "HSTS Missing From HTTPS Server" on some ports, despite HTTPS Only option.
Hello, I have deployed a Web Application - based on a linux container. I have purchased SSL certificate from Azure and added it successfully to the app. The SSL is properly reflecting on the website. I have also ticked the option to use "HTTPS…
Does SignalR work over a Web Applicatiomn Firewall?
We are planning to use Azure SignalR service for a mobile app to get real-time updates. We have a requirement that all traffic on Azure go through a Web Application Firewall (Imperva WAF). Will SignalR Service work if the traffic goes through a WAF?
Azure Application Gateway /WAF v2 provisioning keeps failing
Hi All, We are trying to provision an App Gateway (WAF v2) in a dedciated VNET which is peered with the Transit/Hub Vnet, However the App Gateway provisioning keeps failing with below error "code": "Conflict", "message":…
Azure Applicatin Gateway Standard V1 to WAF V2 directly
Hi Experts, I have few existing applications on Standards V1 and we would like to migrate to WAF V2. Is there any way to directly move to WAF V2.
Azure WAF V1 to WAF V2 Migration
Hi Experts, I have few existing applications on WAF V1 and we would like to migrate to WAF V2. Is there any way to directly move to WAF V2.
Server firewall setting log
i need to log who is added client ip i firewall setting