SEP 26, 2023 | Ask-Me-Anything | Azure Firewall, Azure WAF and Azure DDoS

UPDATED, post-AMA: Here is the AMA recording in case you missed the live session. ************************************************************* Please join us in this Ask Me Anythin...

Azure DDoS Protection

Azure Firewall

Azure Firewall Manager

azure network security

Azure WAF

joshuabales

Copper Contributor

Valon_Kolica

Is it possible to use the Azure WAF to create an allow list of IP ranges and block traffic from all other sources?

gusmodena

Microsoft

Sep 26, 2023

joshuabales, yes you can create a custom rule on Azure Web Application Firewall using RemoteAddr (IP address) as your match variable as described here. Custom rules allow you to create your own rules that are evaluated for each request that passes through the WAF and hold a higher priority than the rest of the rules in the managed rule sets. The custom rules contain a rule name, rule priority, and an array of matching conditions. If these conditions are met, an action is taken (to allow, block, or log). If a custom rule is triggered, and an allow or block action is taken, no further custom or managed rules are evaluated. Custom rules can be enabled/disabled on demand.

Forum Discussion

SEP 26, 2023 | Ask-Me-Anything | Azure Firewall, Azure WAF and Azure DDoS

Share

Resources