WAF azure websocket problem
Hey everyone, I have trouble with app-gw and WAF. The problem is that we implement a websocket and in the app-gw log comes this one: error_info_s: ERRORINFO_UPSTREAM_TIMED_OUT WAFMode_s: Prevention Have another app-gw without WAF and the same config,…
How to show trace info on custom error pages when WAF blocks a request and returns a 403?
If a user does something that triggers a 403 because the WAF blocked the request, I would like to show some extra information in the custom error page that I have already set in the Application Gateway, so it will be easy to identify in the Log Analytics…
Export waf owasp managed rulesets for analysis
I have a couple of application gateways, each having its own waf rulesets. I am trying to export the rules to a CSV so I can compare the differences between them, is there a good way to do this either software tool, CLI/PS or GUI? Any assistance is…
Understanding Discrepancy in WAF Detection: Sending Data as 積極性 but Matched as Mu' in SQL Injection Attack Error
Hello Team, I'm encountering an issue with the WAF Microsoft_DefaultRuleSet-2.1-MS-ThreatIntel-SQLI-99031001. When submitting a form using the POST method, specifically at the input…
Azure Application Gateway Web Application Firewall (WAF) to provide exclusion for socket io
We apply the Azure Application Gateway Web Application Firewall (WAF) to provide additional preventions against malicious attacks such as SQL Injection, Cross-Site Scripting, etc on an Azure App Service. However, when I put the WAF in prevention mode,…
Azure WAF Custom Rule - Match Type -Number
Could you provide more information on the match type number in custom rules for the WAF policy? I'm curious about its specific use cases and any details available. Additionally, I'd like to learn more about the Microsoft Bot Manager ruleset. What…
Rate Limit on Azure WAF Frontdoor Premium not working as expected
We have created an Azure Frontdoor Premim Tier with a Web Application Firewall associated with it and we are having some issues with a specific rule we created to apply rate limiting. The rule is looking for a specific URL and specifies a limit of 2 http…
Tracking Rule Changes in Azure WAF: Seeking a Master File Solution
We use Azure WAF and make constant changes to rules for different applications (adding/removing exclusions, adding/removing custom rules, etc.). We are looking for a way to track all these changes. Is there a file or document (master file style) that we…
we need to Migrate Azure Application Gateway and Web Application Firewall from V2 to V1
Is Migrate Azure Web Application Firewall from V2 to nasic waf V1 , is it possible? and how can we do that? How can we reduce the trafic manager cost in azure?
Excluded Events in WAF
We've got WAF enabled in detection mode and have set up some exclusion rules to cut down on false positives. Now, I'm curious about the ratio of excluded events to matched events. Is there a way to view the logs of excluded events or run a query to…
Confirm if IDPS in Azure firewall is active when behind Azure Application Gateway WAF
My scenario is: [Internet] -> [Azure AGWAF] -> [Azure Firewall] -> [Load Balancer] -> [App Servers] Azure Firewall is Premium, with IDPS & Threat Intelligence enabled. Inbound HTTPS traffic hits the AGWAF, is (WAF) filtered and then…
separate WAF policy for each frontend domain on Frontdoor.
Hi Team, Greetings.. In Azure frontdoor can I setup different WAF and associate it for each frontend endpoint domain, for eg. abc.com -> waf1 api.abc.com -> waf2 api123.abc.com -> waf3 Many Thanks.
WAF error Request body length exceeded the limit
Our waf rules are blocking some content to our backend web servers; I searched the wag logs and found a few OWASAP rules but two in particular did not have a rule number associated with it, the error below. I searched the OWASP code links below as well…
Not showing full chain of SSL certificate via application gateway
Even after setting up root CA certificate of SSL it doesn't show the full chain in for SSL certificate via application gateway.
Why does Azure application gateway rate limit WAF return a 403 and not a 429?
When Azure Application gateway rate limiter functions as expected, we were expecting a 429, but instead, a 403 is returned. Why is this?
Is Azure FrontDoor classic compatible with app service ?
Hi, Microsoft Team, I'm having trouble placing my app service behind azure frontdoor classic. My Backend config (App service) is this but i get this error message if i add my domain to allowed domain in my app service traffic is redirected to the app…
AFD WAF - How to configure custom rule for CookieName request attribute
@Anonymous Hoping you can help me. I have WAF on AFD with DefaultRuleSet_2.1. I am seeing blocks associated with matchVariableName value CookieName. Based on this resource, I understand that I cannot use an exclusion for this attribute type at this…
more than 12K or 18K URL under block for particular rule like SQLI or XSS how can we make false positive by custom or exculsion
Result of latest scan on application associated with AFD-WAF, we observed for reach rule blocked under SQLI and XSS are more than 12 K URLs, and all are under blockage because of just one or more char like ",: etc. which are must required part of…
Azure Application Gateway WAF blocking some requests with OpenID Connect nonce cookies
The default rules of Azure Web Application firewall sometimes block requests containing a cookie set by Microsoft.AspNetCore.Authentication.OpenIdConnect During challenge redirect the AuthenticationHandler sets a cookie named:…
Most cost effective way to secure 2 VMs running a webserver
Hey, I am conducting a project where I will have 2 VMs for redundancy, they will have the same configuration. The VMs will essentially be running docker, portainer and OpenCTI. What is the best way to secure these, there seems to be so many…