94 questions
-2
votes
0
answers
71
views
Encoding full payload and decoding in server in REST
WAF is showing some errors due to including some HTML tags in my payload responses (mostly field-like messages and user guides). Sometimes, I am also sending R programming language code to the server, ...
- 33
0
votes
0
answers
85
views
Issue adding default ruleset to Azure WAF Policy for Azure Front Door Premium
I am trying to create a WAF Policy and assign it the Microsoft_DefaultRuleSet 2.1. I am using Azure CLI 2.76,0
I am getting this error:
(BadRequest) WebApplicationFirewallPolicy validation failed. ...
- 115
-1
votes
1
answer
370
views
Terraform deployment of Azure WAF custom rules - erroring with ApplicationGatewayFirewallMatchValueNoCollection
I'm trying to create custom WAF rules to allow traffic to specific URI's - this deployment is being done via Terraform.
The error I'm getting is:
Application Gateway Web Application Firewall Policy ...
- 15
1
vote
0
answers
108
views
How to prevent `.svc` from being detected by WAF in WCF (.NET 4.8) implementation?
I have a WCF client application running on .NET Framework 4.8, and I've implemented custom headers using a message inspector (IClientMessageInspector) to work around WAF (Web Application Firewall) ...
- 11
0
votes
1
answer
54
views
Azure Application Gateway Client Requests Routing
For Azure Application Gateway with WAF enabled, does client requests filtered on WAF or NSG first?
0
votes
0
answers
57
views
Automating WAF policy Azure App GW handling
We use the Application Gateway as reverse proxy for both internal and external websites. Network request exceptions often need to be made for different environments, and these are handled by the WAF. ...
- 27
0
votes
1
answer
711
views
Azure WAF exclusion, what's the difference between RequestArgNames and RequestArgValues?
I'm reading the docs and I just can't understand what's the difference between the match variables RequestArgNames and RequestArgValues.
Just by looking at the table, those two match variables seem to ...
- 76
0
votes
1
answer
81
views
SendGrid wehbook events do not have "Accept" header
We have integrated SendGrid into our project to send emails, and for logging purposes, we configured one of our application endpoints in SendGrid's webhooks to receive events related to the emails we'...
- 11
0
votes
1
answer
626
views
Query all Azure WAF rules using Azure Resource Graph Explorer
I am currently tasked with reviewing all the WAF rules within our Azure tenant - specifically, I need to review the Custom Rules.
In this journey, I've discovered the Azure Resource Graph Explorer, ...
- 49
0
votes
1
answer
530
views
Make WAF policy to only allow Azure Load Testing or Azure Services
I have Azure Front Door Standard, with Front Door WAF Policy. I have created one WAF custom rule to accept traffic only from Denmark. It works fine.
Now we need to make Azure Load Testing, which hits ...
- 33.2k
0
votes
0
answers
228
views
Getting 0 results querying partitioned external table in Azure Storage using Kusto Explorer
When I use Kusto Explorer to query a external table pointing to partitioned log files in Azure blob storage, I always get 0 results even though it seems to be set up correctly.
I have an Azure App ...
- 41
1
vote
1
answer
835
views
How create Azure Front domains with pre-validated domain
I'm trying to validate FrontDoor custom domains using the Azure pre-validated domain.
I have web app origins that already validated their custom domains, and I wan't to be able to import them to the ...
- 1,005
2
votes
0
answers
627
views
Azure WAF rule blocks image upload request from application but allows from PostMan [closed]
Environment: We have a Windows application installed in the customer agents machine, a feature of this application is to upload images to the server via http post. These requests go through Azure ...
0
votes
1
answer
882
views
Block traffic in azure front door based on claims
I have a scenario in which I want to block some requests.
There is a property set in Identity claims and I want to deny the request based on that property.
Let's say that claims have a proper named &...
- 11
0
votes
1
answer
3k
views
How to setup session affinity for Rest API in Azure App Service
I have a frontend app service (scaled up to 3 nodes) and a api app service (scaled up to 3 nodes) on Azure. When user enter the website, the request goes to frontend app service first and then ...
- 1
0
votes
1
answer
713
views
Update-AzFrontDoorWafPolicy - update particular managed rule action
I have Azure Front Door WAF policy and would like to change particular managed rule action using Powershell.
Here is my code:
$RuleOverride1 = New-AzFrontDoorWafManagedRuleOverrideObject -RuleId ...
- 30
0
votes
1
answer
4k
views
Azure Frontdoor WAF policy is blocking requests even though I have rule disabled
I have a Microsoft.Network/FrontDoorWebApplicationFirewallPolicies@2019-10-01 policy for my web app. I pass in a token via the URL for some requests and sometimes this token has a double hyphen -- ...
- 825
3
votes
1
answer
3k
views
How to create an exclusion list for certain rules based on RequestUri on the Azure WAF policy associated with Azure Application Gateway?
I have a request URL :
www.<some-url>.com/submit
.
I can see that I can create exclusions based on args, headers and cookies in exclusion lists for the Azure WAF policy, however, I was hoping ...
- 1,771
1
vote
2
answers
2k
views
Azure Application Gateway WAF Policy Custom Rule Update
I have an Application Gateway WAF policy.
I want to update the existing custom rule by adding another IP address.
How can I do this dynamically from Powershell or Azure CLI?
0
votes
1
answer
408
views
Update Azure FrontdoorPremium Web Application Firewall Policy by API
I'm trying to update an Frontdoor WAF policy by API following the article in the link below but I'm running into several issues.
-Article seems to be focused on Frontdoor Classic, not premium, so the ...
- 11
0
votes
2
answers
1k
views
Access Denied error on mutual authentication in Application Gateway v2 and Azure App Service
Ref1: enter link description here
Ref2: enter link description here
I've implemented mutual (certificate) authentication and I hosted my app on the Azure App service. When I open directly my app URL ...
- 313
1
vote
1
answer
464
views
Azure application gateway v2
Could you please help me?
I currently work with Azure application gateway waf v2 and when I try to access an application it redirects me perfectly but it does not take the variables
for example when I ...
- 13
1
vote
2
answers
4k
views
Azure Application Gateway Timeout #long running process
We are using Azure Application Gateway with WAF. We have configured a timeout of 3600 seconds, and we performed the following scenario with Azure WAF and without WAF:
With Azure: The application runs ...
- 11
1
vote
0
answers
271
views
How to allow socket.io traffic go through an Azure Web Application Firewall
We apply the Azure Application Gateway Web Application Firewall (WAF) to provide additional preventions against malicious attacks such as SQL Injection, Cross-Site Scripting, etc on an Azure App ...
- 10.9k
0
votes
0
answers
2k
views
Allowing HTTP Header Content Type */* in Azure WAF Rules
I am trying to call the Azure-hosted API endpoint using a 3rd party application. Application sends the HTTP request with the header values ContentType = "*/*";
Azure Application Gateway WAF ...
- 3,386