Forum Discussion
vijaycloud
Nov 23, 2020Copper Contributor
Web Application Firewall in Prevention Mode
Hi Team,
My application is a ASP.NET web application built on standard .NET Framework features. It works well when Web App Firewall (WAF) is off or set to “Detection”. However, once the WAF set...
StefanIvemo
Dec 08, 2020Brass Contributor
Are you using WAF with Application Gateway or Front Door? Anyway, you should look into Web Application Firewall Policies. https://docs.microsoft.com/en-us/azure/web-application-firewall/ag/create-waf-policy-ag
You can create both custom rules and disable managed rules to make sure that valid traffic reaches your backend. In order to find which rules are blocking your traffic make sure you enable logging in your Application Gateway or Front Door. https://docs.microsoft.com/en-us/azure/application-gateway/log-analytics