Azure Application Gateway
An Azure service that provides a platform-managed, scalable, and highly available application delivery controller as a service.
969 questions
2 answers
One of the answers was accepted by the question author.
Azure Web Application Firewal and special characters
Hello Q&A, I`m having issues adding special characters such as À à È è to the WAF exclusion lists. Getting the following error message.
1 answer
Web Application Firewall - Log on blocked IPs
Im want to see the amount of blocked IPs and how many requests each have made from the logs on the Application Gateway + Web Application Firewall. I have custom rules use, geo-blocking and IP blocking. But would expect these IP`s being blocked by the…
2 answers
One of the answers was accepted by the question author.
Domain Limits
I have 2 IIS servers on Azure that present content based on the domain name. 280 domains are pointed to it at the moment on our current WAF solution. Looking at the App Gateway WAF v2 but I'm not sure if it can support all the domain names. For SSL I…
asked 2021-01-05T22:58:19.323+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(220.8, 36%, 31%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDC%3C/text%3E%3C/svg%3E)
Danny Chrismas
71
Reputation points
answered 2021-01-19T20:11:49.417+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(150.4, 20%, 24%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMT%3C/text%3E%3C/svg%3E)
Mubarak Tanseer
1
Reputation point Microsoft Employee
4 answers
One of the answers was accepted by the question author.
Azure Web Applicaiton Firewall CDN Logs?
I have implemented WAF with CDN. The WAF is blocking more than it should. I was wondering where I can find/enable the logs for it to see what rule is blocking my requests? I know there is a logs section in AFD where I view this information but I…
asked 2020-12-22T20:04:59.29+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(115.19999999999999, 14.000000000000002%, 21%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJT%3C/text%3E%3C/svg%3E)
Jayson Truong
21
Reputation points
commented 2021-01-06T11:47:31.54+00:00
SUNOJ KUMAR YELURU
13,956
Reputation points MVP
1 answer
One of the answers was accepted by the question author.
How to setup DNS to my azure Cloud
I've owned a domain Siera.xyz and went to a domain provider and changed the DNS to point to Azure records. Coming back to azure and setup the domain siera.xyz to point to the local web VM but when I nslookup and browse the URL siera.xyz it didn't…
asked 2020-12-08T08:53:15.167+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(220.8, 36%, 31%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ES%3C/text%3E%3C/svg%3E)
SieraLight
96
Reputation points
commented 2020-12-18T18:24:55.017+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(48, 36%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESM%3C/text%3E%3C/svg%3E)
SaiKishor-MSFT
17,206
Reputation points
3 answers
Does Front Door WAF Exclusions work with POST body arguments?
I'm trying to exclude a body post argument from triggering a default set rule - https://learn.microsoft.com/en-us/azure/web-application-firewall/afds/waf-front-door-exclusion In the form, the input name is "content". I've setup an exclusion…
asked 2020-07-26T09:39:25.24+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(294.40000000000003, 84%, 38%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EP%3C/text%3E%3C/svg%3E)
Praemon
131
Reputation points
answered 2020-12-15T18:26:14.497+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(313.6, 80%, 40%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERJ%3C/text%3E%3C/svg%3E)
Ruth, Jason
1
Reputation point
1 answer
Fearture differences of WAF in CDN, Frontdoor and Application gateway
I cannot find a good feature comparison between the WAF's that can be set up in Application Gateway (v1 and v2 AND its different states - 1, 2 and 3), Frontdoor and CDN. Features like, rate limiting, bot detection, geo blocking, etc. Also if I…
asked 2020-10-28T08:26:04.587+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(160, 6%, 25%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EOG%3C/text%3E%3C/svg%3E)
Owin Gruters - iO
46
Reputation points
commented 2020-12-04T09:29:26.357+00:00
suvasara-MSFT
10,011
Reputation points
1 answer
WAFv2 Supporting TLS 1.3 for Lucky13 Vulnerability Fix
Hi Team, Need urgent help with documentation regarding fixing of Lucky-13 Vulnerability [CVE-2013-0169] raised for Azure WAFv2 which is impacting Go-Live for Customer. As per the recommendation, it requires TLS 1.3 to fix but WAF v2 does not support…
asked 2020-10-29T15:52:49.757+00:00
Girish Namala
1
Reputation point
commented 2020-12-04T09:28:45.01+00:00
suvasara-MSFT
10,011
Reputation points
1 answer
Securing Single Web App.
I currently have a single Web App and Durable Functions, 2 VMs and 1 Azure SQL Database and 1 Cosmos DB. I wanted to know what is the best approach to secure the Web App. I have read WAF, or WAF with Application Gateway or Front Door. I would need…
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(134.4, 90%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EK%3C/text%3E%3C/svg%3E)
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(153.6, 92%, 24%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
1 answer
One of the answers was accepted by the question author.
Secure Power BI Web App
We have installed PowerBI Gateway in our VM which is secured by firewall. The PowerBI Web Interface will be accessed by an external vendor, and the data to the PowerBI will be served by the external vendor. In other words, PowerBI in one domain will be…
asked 2020-10-24T23:17:25.723+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(195.2, 95%, 28%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EPK%3C/text%3E%3C/svg%3E)
Prasenna Kannan
436
Reputation points
accepted 2020-10-28T06:09:28.797+00:00
Prasenna Kannan
436
Reputation points
1 answer
One of the answers was accepted by the question author.
Builtin Azure Service that automatically updates the attack signature heuristically ?
Hi Experts, We have the need to secure the Application Gateway and hundreds of API exposed to the Internet as part of our production environment, Using the existing builtin, Azure services, How to make it secure from Unknown Threat or 0-day attack…
asked 2020-09-15T04:39:31.373+00:00
EnterpriseArchitect
4,866
Reputation points
commented 2020-10-06T05:32:04.21+00:00
GitaraniSharma-MSFT
48,011
Reputation points Microsoft Employee
2 answers
One of the answers was accepted by the question author.
Protecting a webapp within a Standard App Service plan, using a virtual firewall appliance, rather than an Application Gateway
We have a webapp (a REST API service) that is sitting in a S1 App Service plan. We are protecting the webapp with a WAF policy assigned to a listener on an Application Gateway v2. The WAF policy only protects this one webapp. We have run into a…
asked 2020-08-13T22:15:27.957+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(35.2, 41%, 13%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERB%3C/text%3E%3C/svg%3E)
Rhett Blach
46
Reputation points
accepted 2020-09-28T01:49:16.893+00:00
Rhett Blach
46
Reputation points
1 answer
WAF Policy
Just starting to learn about WAF policies. If I add a listener to the WAF policy, do I need to remove that same listener from list in the WAF itself? Or does the WAF policy override any basic config within the WAF? Thanks!
2 answers
Application Gateway and Geo Location Setup
Hey MS world, Our Goal is to restrict access to our Web Application by Country. Basically deny all, and allow access to ONE country. Everything worked great utilizing NSG group with and Dev Team to restrict access and attacks. We installed the…
asked 2020-07-19T08:34:50.33+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(224.00000000000003, 40%, 31%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ED%3C/text%3E%3C/svg%3E)
Danejahtt
1
Reputation point
answered 2020-09-12T11:56:20.79+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(188.79999999999998, 67%, 28%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMJ%3C/text%3E%3C/svg%3E)
Manish Jha
236
Reputation points
1 answer
One of the answers was accepted by the question author.
Vulnerability scan shows "HSTS Missing From HTTPS Server" on some ports, despite HTTPS Only option.
Hello, I have deployed a Web Application - based on a linux container. I have purchased SSL certificate from Azure and added it successfully to the app. The SSL is properly reflecting on the website. I have also ticked the option to use "HTTPS…
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(252.8, 49%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EH%3C/text%3E%3C/svg%3E)
1 answer
One of the answers was accepted by the question author.
Does SignalR work over a Web Applicatiomn Firewall?
We are planning to use Azure SignalR service for a mobile app to get real-time updates. We have a requirement that all traffic on Azure go through a Web Application Firewall (Imperva WAF). Will SignalR Service work if the traffic goes through a WAF?
asked 2020-08-27T17:14:07.13+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(150.4, 51%, 24%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERM%3C/text%3E%3C/svg%3E)
Rai, Mahesh
21
Reputation points
accepted 2020-09-02T18:26:17.157+00:00
Rai, Mahesh
21
Reputation points
2 answers
Azure Application Gateway /WAF v2 provisioning keeps failing
Hi All, We are trying to provision an App Gateway (WAF v2) in a dedciated VNET which is peered with the Transit/Hub Vnet, However the App Gateway provisioning keeps failing with below error "code": "Conflict", "message":…
asked 2020-08-20T21:46:10.2+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(297.6, 45%, 38%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EKC%3C/text%3E%3C/svg%3E)
Karthik Chowdary Namburu
1
Reputation point
commented 2020-08-26T20:28:22.613+00:00
TravisCragg-MSFT
5,681
Reputation points Microsoft Employee
1 answer
One of the answers was accepted by the question author.
Azure Applicatin Gateway Standard V1 to WAF V2 directly
Hi Experts, I have few existing applications on Standards V1 and we would like to migrate to WAF V2. Is there any way to directly move to WAF V2.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(256, 59%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EC%3C/text%3E%3C/svg%3E)
1 answer
One of the answers was accepted by the question author.
Azure WAF V1 to WAF V2 Migration
Hi Experts, I have few existing applications on WAF V1 and we would like to migrate to WAF V2. Is there any way to directly move to WAF V2.
1 answer
Server firewall setting log
i need to log who is added client ip i firewall setting
asked 2020-07-29T11:16:10.727+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(166.4, 1%, 26%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESG%3C/text%3E%3C/svg%3E)
Sameh Gamal
1
Reputation point
commented 2020-08-06T11:28:13.973+00:00
GitaraniSharma-MSFT
48,011
Reputation points Microsoft Employee