I have a request URL : www.<some-url>.com/submit . I can see that I can create exclusions based on args, headers and cookies in exclusio ...
I have an Application Gateway WAF policy. I want to update the existing custom rule by adding another IP address. How can I do this dynamically from ...
I'm trying to deploy a simple infrastructure in Azure through Terraform, the infrastructure is made of an Application Gateway (with Web Application Fi ...
I'm trying to update an Frontdoor WAF policy by API following the article in the link below but I'm running into several issues. -Article seems to be ...
Could you please help me? I currently work with Azure application gateway waf v2 and when I try to access an application it redirects me perfectly but ...
Allow action will log requests. Log action will log requests. I don't know what's the difference between them. If I don't want the rule to bl ...
Do I really need a layer 7 Firewall if I change the architecture to use a VPN? If our clients connect to our services via a VPN, surely that would sav ...
Can anyone tell me if there is a best practice (and if failing that, any practice!) for blocking traffic from VPNs or Anonymous proxies using Azure WA ...
We have a multi-tennant app, with each client's instance hosted on a sub-domain. E.g.: client1.mydomain.com client2.mydomain.com To support t ...
I need to log the traffic coming from a range of IP address in Azure WAF by having custom rules. For example I need to log the traffic coming from IP ...
We have a web API server that sits behind Azure WAF and Traffic manager and everything is working fine except when the API returns 503 for maintenance ...
On the final stage of creating a WAF2 gateway, there is an error with code "ApplicationGatewaySslCertificateTooBig" and message "Data too big for cert ...
Goal: Toggle an application Gateway WAF between prevention and detection mode via code. Configuration Details: App GW SKU: WAFv2 Application Ga ...
While adding subnet for creating a WAFV2 application gateway in azure, I tried to use the subnet used in WAFV1 gateway. But it is showing an error "Su ...
After creating Application Gateway Listeners and rules we have uploaded the SSL certificate(HTTPS) for Port:-443, but URL is not hitting. we are using ...
We have configured Listeners and add the rules and upload the SSL certificate on Azure portal But the server is not hitting the URL. Suggest me if the ...
We have an accreditation requirement to prepare some form a report that has charts/metrics of WAF detection examples, as well as recommendations We es ...
Has anyone had luck getting SSRS to work when behind a v2 Azure Application Gateway? The site loads, but randomly prompts for authentication and fails ...
What do you do about common English text firing off the CRS rules? e.g. look at the phrases here, they all fire off a CRS alert. They are examples of ...
Is it possible to block just part of a request using ModSecurity, Azure WAF or similar? For example could you block a cookie because it contains inval ...