az network application-gateway waf-policy custom-rule match-condition
Manage match conditions in an application gateway web application firewall (WAF) policy custom rule.
Commands
| Name | Description | Type | Status |
|---|---|---|---|
| az network application-gateway waf-policy custom-rule match-condition add |
Add a match condition to an application gateway WAF policy custom rule. |
Core | GA |
| az network application-gateway waf-policy custom-rule match-condition list |
List application gateway WAF policy custom rule match conditions. |
Core | GA |
| az network application-gateway waf-policy custom-rule match-condition remove |
Remove a match condition from an application gateway WAF policy custom rule. |
Core | GA |
az network application-gateway waf-policy custom-rule match-condition add
Add a match condition to an application gateway WAF policy custom rule.
az network application-gateway waf-policy custom-rule match-condition add --match-variables
--name
--operator {Any, BeginsWith, Contains, EndsWith, Equal, GeoMatch, GreaterThan, GreaterThanOrEqual, IPMatch, LessThan, LessThanOrEqual, Regex}
--policy-name
--resource-group
[--index]
[--negate {0, 1, f, false, n, no, t, true, y, yes}]
[--transforms]
[--values]Examples
Add application gateway WAF policy custom rule match condition with contains.
az network application-gateway waf-policy custom-rule match-condition add --resource-group MyResourceGroup --policy-name MyPolicy --name MyWAFPolicyRule --match-variables RequestHeaders.value --operator contains --values foo boo --transform lowercaseAdd application gateway WAF policy custom rule match condition with equal.
az network application-gateway waf-policy custom-rule match-condition add --resource-group MyResourceGroup --policy-name MyPolicy --name MyWAFPolicyRule --match-variables RequestHeaders.Content-Type --operator Equal --values application/csp-reportRequired Parameters
Space-separated list of variables to use when matching. Variable values: RemoteAddr, RequestMethod, QueryString, PostArgs, RequestUri, RequestHeaders, RequestBody, RequestCookies. Support shorthand-syntax, json-file and yaml-file. Try "??" to show more.
Name of the WAF policy rule.
Operator for matching.
Name of the application gateway WAF policy.
Name of resource group. You can configure the default group using az configure --defaults group=<name>.
Optional Parameters
Index of match condition. If no index is provided, the default behavior is append.
Match the negative of the condition.
Space-separated list of transforms to apply when matching. Allowed values: HtmlEntityDecode, Uppercase, Lowercase, RemoveNulls, Trim, UrlDecode, UrlEncode. Support shorthand-syntax, json-file and yaml-file. Try "??" to show more.
Space-separated list of values to match. Support shorthand-syntax, json-file and yaml-file. Try "??" to show more.
Global Parameters
Increase logging verbosity to show all debug logs.
Show this help message and exit.
Only show errors, suppressing warnings.
Output format.
JMESPath query string. See http://jmespath.org/ for more information and examples.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.
Increase logging verbosity. Use --debug for full debug logs.
az network application-gateway waf-policy custom-rule match-condition list
List application gateway WAF policy custom rule match conditions.
az network application-gateway waf-policy custom-rule match-condition list --name
--policy-name
--resource-groupExamples
List application gateway WAF policy custom rule match conditions.
az network application-gateway waf-policy custom-rule match-condition list --name MyWAFPolicyRule --policy-name MyPolicy --resource-group MyResourceGroup --subscription MySubscriptionRequired Parameters
Name of the WAF policy rule.
Name of the application gateway WAF policy.
Name of resource group. You can configure the default group using az configure --defaults group=<name>.
Global Parameters
Increase logging verbosity to show all debug logs.
Show this help message and exit.
Only show errors, suppressing warnings.
Output format.
JMESPath query string. See http://jmespath.org/ for more information and examples.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.
Increase logging verbosity. Use --debug for full debug logs.
az network application-gateway waf-policy custom-rule match-condition remove
Remove a match condition from an application gateway WAF policy custom rule.
az network application-gateway waf-policy custom-rule match-condition remove --index
--name
--policy-name
--resource-groupExamples
Remove a match condition from an application gateway WAF policy custom rule.
az network application-gateway waf-policy custom-rule match-condition remove -n MyRule -g MyResourceGroup --policy-name MyPolicy --index 0Required Parameters
Index of the match condition to remove.
Name of the WAF policy rule.
Name of the application gateway WAF policy.
Name of resource group. You can configure the default group using az configure --defaults group=<name>.
Global Parameters
Increase logging verbosity to show all debug logs.
Show this help message and exit.
Only show errors, suppressing warnings.
Output format.
JMESPath query string. See http://jmespath.org/ for more information and examples.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.
Increase logging verbosity. Use --debug for full debug logs.
Feedback
Coming soon: Throughout 2024 we will be phasing out GitHub Issues as the feedback mechanism for content and replacing it with a new feedback system. For more information see: https://aka.ms/ContentUserFeedback.
Submit and view feedback for