cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Web Application Firewall in Prevention Mode

vijaycloud
Microsoft

‎Nov 22 2020 08:25 PM

‎Nov 22 2020 08:25 PM

Web Application Firewall in Prevention Mode

Hi Team,

 

My application is a ASP.NET web application built on standard .NET Framework features. It works well when Web App Firewall (WAF) is off or set to “Detection”. However, once the WAF set to “Prevention”, most requests to the web servers (both internet and intranet) will be blocked. Can I have your advice on what to be set on the firewall rule to resolve this?

3,540 Views
0 Likes
1 Reply
Reply
1 Reply
StefanIvemo

‎Dec 08 2020 02:24 PM

‎Dec 08 2020 02:24 PM

Re: Web Application Firewall in Prevention Mode

@vijaycloud 

 

Are you using WAF with Application Gateway or Front Door? Anyway, you should look into Web Application Firewall Policies. Create Web Application Firewall (WAF) policies for Application Gateway | Microsoft Docs

 

You can create both custom rules and disable managed rules to make sure that valid traffic reaches your backend. In order to find which rules are blocking your traffic make sure you enable logging in your Application Gateway or Front Door. Examine WAF logs using Azure Log Analytics - Azure Application Gateway | Microsoft Docs

 

 

 

 

0 Likes
Reply