Azure Application Gateway
An Azure service that provides a platform-managed, scalable, and highly available application delivery controller as a service.
1,002 questions
1 answer
One of the answers was accepted by the question author.
Is it possible to have `ApplicationGatewayFirewallLog` for disabled rules on Application Gateway WAF in Prevention mode
Application Gateway with WAF in Detection mode logs each matched rule. However, in Prevention mode it catches only rules which are enabled. It makes sense somehow, because we don't want to have disabled rules evaluated in prevention mode, however I want…
asked 2022-04-26T09:03:48.847+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(35.2, 77%, 13%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EKM%3C/text%3E%3C/svg%3E)
Krzysztof Madej
26
Reputation points
commented 2022-04-26T11:37:01.197+00:00
Krzysztof Madej
26
Reputation points
2 answers
Preview OWASP ModSecurity Core Rule Set 3.2 for Azure Web Application Firewall
There is a public preview of OWASP ModSecurity Core Rule Set 3.2 for Azure Web Application Firewall since July 2021. I´m wondering when it will be an official offer for Azure customers, once it has important improvements that could be usefull for us. …
asked 2022-04-13T19:10:24.183+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(246.4, 12%, 33%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EHA%3C/text%3E%3C/svg%3E)
Helio A. de Oliveira
1
Reputation point
answered 2022-04-22T15:34:12.75+00:00
Helio A. de Oliveira
1
Reputation point
1 answer
Azure Front Door WAF rate-limit behind NAT
Hello, I was researching Azure FrontDoor rate-limiting capabilities and as far as I can tell rate-limiting happens on an IP level, ie: when an IP surpasses the limit set for a given threshold it's blocked from calling the backend for a certain amount…
asked 2022-03-30T09:52:31.163+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(217.60000000000002, 54%, 31%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EPV%3C/text%3E%3C/svg%3E)
Pantelis, Vasilis
1
Reputation point
commented 2022-04-21T11:40:23.043+00:00
GitaraniSharma-MSFT
49,261
Reputation points Microsoft Employee
1 answer
One of the answers was accepted by the question author.
"File Upload Limit" that can be set by WAF
Hello. I'm collecting information about setting up WAF for Application Gateway v2. I have three questions about the file upload limit in the WAF settings. 1. What is the file upload limit? What does this file upload refer to? For example, is it…
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(310.4, 23%, 40%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EH2%3C/text%3E%3C/svg%3E)
1 answer
One of the answers was accepted by the question author.
Problem to receieve HTTPS trafic in Azure Application Gateway
In my scenario, I have an Application Gateway And three web apps on the backend. I route traffic based on subdomain and config Listener with HTTPS. All of the home pages of these web apps work well. Also, I have a program that sends data to…
asked 2022-04-08T14:28:17.257+00:00
Mohsen Akhavan
746
Reputation points
accepted 2022-04-13T06:06:47.18+00:00
Mohsen Akhavan
746
Reputation points
2 answers
One of the answers was accepted by the question author.
DDoS Protection vs Bot detection
Hi, Good Day. I have recently come across that Azure DDoS is a new service that offers protection against DDoS kinds of attack by default. When we say DDoS, this is mainly caused by bots or scripts to emulate thousands of attacks in a min. Does…
asked 2022-04-01T16:02:54.197+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(272, 56.00000000000001%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERC%3C/text%3E%3C/svg%3E)
Raghuraman C
21
Reputation points
answered 2022-04-05T10:46:10.36+00:00
Raghuraman C
21
Reputation points
1 answer
Not possible to modify Action on Managed-rules in Application Gateway WAF
Hi, We are using Azure application gateway WAF. Our WAF is in "Prevention" policy mode. We have defined some custom rules with blocked action. We would like to enable some of the managed rules with "Only Log" action. However…
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(35.2, 70%, 13%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EM%3C/text%3E%3C/svg%3E)
1 answer
One of the answers was accepted by the question author.
Add IP Range - Azure Front Door WAF Custom Rule
Hi, My requirement is to block all requests from a range of IP addresses. This range of IP addresses will be added into a new custom rule. However, I do not know the format in which an IP range can be added into the textbox (screenshot below)…
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(48, 14.000000000000002%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAD%3C/text%3E%3C/svg%3E)
1 answer
Azure application gateway (SSL Certificate – Signature verification Failed Vulnerability and SSL Certificate – Subject Common Name Does Not Match server FQDN)
I have Azure application gateway with WAF wich have many backends and but Qualys did scan about several Ips associate this azure application gateway and found vulnerabilite like (SSL Certificate – Signature verification Failed Vulnerability and SSL…
asked 2022-03-24T18:39:39.27+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(54.400000000000006, 14.000000000000002%, 15%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERC%3C/text%3E%3C/svg%3E)
Rafael Campos
1
Reputation point
answered 2022-03-28T10:46:58.967+00:00
GitaraniSharma-MSFT
49,261
Reputation points Microsoft Employee
3 answers
One of the answers was accepted by the question author.
Does Azure WAF bot protection work on Azure Front Door Classic?
Does Azure WAF bot protection work on Azure Front Door Classic or do you need to upgrade to premium?
asked 2022-03-21T18:00:25.433+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(179.20000000000002, 81%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAA%3C/text%3E%3C/svg%3E)
Adam Ahmed
21
Reputation points
accepted 2022-03-23T15:11:19.237+00:00
Adam Ahmed
21
Reputation points
1 answer
One of the answers was accepted by the question author.
Rate limiting in Azure Application gateway+ WAF
Hi here, Is it possible to implement Rate limiting using Azure application gateway and WAF for REST APIs hosted in App service ?
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(28.799999999999997, 83%, 12%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EU%3C/text%3E%3C/svg%3E)
2 answers
Block certain URLs/domains/hostnames on WAF
Hi, We have a WAF policy configured for our Application Gateway that sits in front of the website/server. The requirement from the client is to block certain hostnames/domains from accessing their website/server. Although it is possible to create…
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(118.4, 28.999999999999996%, 21%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ES%3C/text%3E%3C/svg%3E)
1 answer
One of the answers was accepted by the question author.
Which type of App Service Environment v3 (Public IP or Private IP) is suitable for this scenario?
I wanna host three Web Apps on App Service Environment 3 (like the below diagram). Also, an Application Gateway control and routes incoming traffic between three Web Apps based on domain address. When I create ASE v3, I should select Public IP…
asked 2022-02-28T07:14:05.127+00:00
Mohsen Akhavan
746
Reputation points
commented 2022-03-07T09:13:05.97+00:00
Alan Kinane
16,806
Reputation points MVP
3 answers
One of the answers was accepted by the question author.
Best practice for allowing SMTP to an Exchange VM in Azure
Hi, I need to allow incoming public SMTP and HTTPS traffic into one Exchange server in Azure. What is best practice for this situation? I could add a public IP address to the nic and allow smtp from specified IP ranges in an NSG. But I believe…
asked 2020-08-25T08:20:11.893+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(172.8, 74%, 26%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EM%3C/text%3E%3C/svg%3E)
mij2020
366
Reputation points
answered 2022-02-16T06:53:14.707+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(137.6, 1%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJB%3C/text%3E%3C/svg%3E)
Jayadeava Balaraja
1
Reputation point
0 answers
Application gateway WAF - blocking url parameters
Hello, I have a Windows server with few running REST services on it. URLs: Example 1: https://service.company.com/api/MyService/Login/?user='tom'&pass='123456' Example 2:…
asked 2022-01-05T19:33:42.69+00:00
Werner Weiss
1
Reputation point
commented 2022-01-12T13:27:06.187+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(134.4, 59%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECM%3C/text%3E%3C/svg%3E)
ChaitanyaNaykodi-MSFT
24,231
Reputation points Microsoft Employee
2 answers
How to setup WAF Reverse Proxy , DDOS in Azure
Dear Community, Please can you let me know how How to setup WAF Reverse Proxy , DDOS in Azure for a DNS? and get SSL Certificate Regards Rajesh S
asked 2022-01-07T16:24:29.887+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(291.2, 19%, 38%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERS%3C/text%3E%3C/svg%3E)
Rajesh Sajjanar
1
Reputation point
answered 2022-01-09T17:03:14.563+00:00
Rajesh Sajjanar
1
Reputation point
0 answers
Azure FrontDoor WAF does not filter PUT requests
Hello, I'm trying to use Azure FrontDoor WAF with some web applications, but I noticed that default WAF rules do not filter PUT requests. I have tried to use some common XSS and SQL injection code into PUT requests, but WAF does not block anything by…
asked 2021-12-22T12:54:33.897+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(121.6, 39%, 21%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMK%3C/text%3E%3C/svg%3E)
Maksym Kharchenko2
41
Reputation points
commented 2021-12-22T19:58:46.38+00:00
suvasara-MSFT
10,026
Reputation points
1 answer
One of the answers was accepted by the question author.
Azure FrontDoor WAF rate limit unexpected behavior
Hi, recently I configured WAF on Azure FrontDoor, but I noticed that the “rate limit” feature not working as expected. I have 2 rules configured with “rate limit”: Then I used the following batch script to make requests to my URL: @echo…
asked 2021-12-16T17:02:15.937+00:00
Maksym Kharchenko2
41
Reputation points
commented 2021-12-20T12:03:31.883+00:00
GitaraniSharma-MSFT
49,261
Reputation points Microsoft Employee
1 answer
How to configure rate limtting in Azure WAF for Application Gateway
Hi All, How can I configure rate-limiting using WAF for Application Gateway. Thanks
asked 2021-12-17T04:53:12.913+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(220.8, 45%, 31%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ED%3C/text%3E%3C/svg%3E)
Dots
1
Reputation point
answered 2021-12-17T10:01:31.117+00:00
GitaraniSharma-MSFT
49,261
Reputation points Microsoft Employee
3 answers
One of the answers was accepted by the question author.
Azure application gateway with Web App - Gateway IP wont work
Hello Team, I have Azure web app and i wanted to configure Azure Application gateway so that all the public IP traffic are routed through application gateway. For that i have created Application gateway and vNET, later I go to Web App Service -…
asked 2021-11-24T14:14:17.033+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(304, 8%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAT%3C/text%3E%3C/svg%3E)
Atulkumar Thummar
101
Reputation points
accepted 2021-12-01T05:59:09.46+00:00
Atulkumar Thummar
101
Reputation points