Update: Microsoft will be moving away from UserVoice sites on a product-by-product basis throughout the 2021 calendar year. We will leverage 1st party solutions for customer feedback. Learn more here.

Networking

The Networking forum covers all aspects of Networking in Azure, including endpoints, load-balancing, network security, DNS, Traffic Manager, virtual networks, and external connectivity.

Virtual Network:

  • Service overview

  • Technical documentation

  • Pricing details

  • Traffic Manager:

  • Service overview

  • Technical documentation

  • Pricing details

  • Network Watcher:

  • Service overview

  • Technical documentation

  • Pricing details

  • If you have any feedback on any aspect of Azure relating to Networking, we’d love to hear it.

    • Hot ideas
    • Top ideas
    • New ideas
    • My feedback
    1. 370 votes
      Vote

      We're glad you're here

      Please sign in to leave feedback

      Signed in as (Sign out)
      You have left! (?) (thinking…)
      24 comments  ·  Web Application Firewall  ·  Flag idea as inappropriate…  ·  Admin →
    2. WAF - please remove the post data limit (128 KB) and File size limit (100 MB) - Why should I be restricted?

      WAF - please remove the post data limit (128 KB) and File size limit (100 MB) - Why should I be restricted?

      18 votes
      Vote

      We're glad you're here

      Please sign in to leave feedback

      Signed in as (Sign out)
      You have left! (?) (thinking…)
      0 comments  ·  Web Application Firewall  ·  Flag idea as inappropriate…  ·  Admin →
    3. We should have the visibility/Dashboard to see what all rules are being triggred from the owasp rules

      We should have the visibility/Dashboard to see what all rules are being triggred from the owasp 3.0

      Currently if my website goes slow and application team reports that its slow because of waf we dont know what rules are being triggered.

      We raise a ticket to Microsoft backed and then they will provide the set of rules to us. This dependency should be remove

      8 votes
      Vote

      We're glad you're here

      Please sign in to leave feedback

      Signed in as (Sign out)
      You have left! (?) (thinking…)
      triaged  ·  0 comments  ·  Web Application Firewall  ·  Flag idea as inappropriate…  ·  Admin →
    4. modify the action behavior of rule 200004

      When the traffic was blocked by rule ID 200004 of WAF log.Currently, By checking the rule log, I saw the message said ",{"message":"Access denied with code 403 (phase 2). " but the action is matched.

      The expectation of this WAF log behavior is blocked, can we modify the action from matched to blocked in WAF log?

      4 votes
      Vote

      We're glad you're here

      Please sign in to leave feedback

      Signed in as (Sign out)
      You have left! (?) (thinking…)
      0 comments  ·  Web Application Firewall  ·  Flag idea as inappropriate…  ·  Admin →
    5. Web Application Firewall Logs not clear for large matches

      In the WAF logs, when a rule is matched, the 'detailsmatchess' column shows a JSON breakdown of which strings matched the rule and caused the action to trigger.

      However when the match is longer than 100 characters then the 'matchedPortion' value shows as empty which can make it hard to identify why the rule was triggered.

      In these instances, it would be beneficial to give the name of the Parameter itself that is causing the trigger for example "__VIEWSTATE".
      This could actually be added to the JSON string itself as a separate key for all matches.

      The attached…

      3 votes
      Vote

      We're glad you're here

      Please sign in to leave feedback

      Signed in as (Sign out)
      You have left! (?) (thinking…)
      1 comment  ·  Web Application Firewall  ·  Flag idea as inappropriate…  ·  Admin →
    6. Change default error message in prevention mode

      Is it possible to adjust the default behaviour in 'prevention' mode?
      We would like to answer the AppGw with a 404 instead of 403 to make any further attack attempts less likely.

      3 votes
      Vote

      We're glad you're here

      Please sign in to leave feedback

      Signed in as (Sign out)
      You have left! (?) (thinking…)
      1 comment  ·  Web Application Firewall  ·  Flag idea as inappropriate…  ·  Admin →
    7. waf body

      Today we encounter a number of hits on our WAF. Investigating those issues is possible but often the errors are related to the body that's added to the request. The only way to investigate the issues at this moment is by allowing the WAF rule, let the "blocked" message through to the end application, investigate there the body and determine if we keep the rule disabled or re-enable it.

      This can be done a lot faster (and more secure) by allowing the possibility to track/log the body of requests sent over the WAF. possible limited to a small period of…

      3 votes
      Vote

      We're glad you're here

      Please sign in to leave feedback

      Signed in as (Sign out)
      You have left! (?) (thinking…)
      0 comments  ·  Web Application Firewall  ·  Flag idea as inappropriate…  ·  Admin →
    8. Allow block duraion configuration for ratelimit rule

      Please increase the block duration when configuration WAF Custom rule (ratelimit). Basically, we want to configure a WAF rules in 4 parameters per below but we cannot set the value for 1.
      • Block the IP for 1)90 minutes if the IP sends HTTP request to 2) URL x for more than 3)100 times in 4) 5 minutes.

      So far the block period is default to RateLimitDurationInMinutes and gets reset when the new cycle begins. There is no way we can configure the block period.

      1 vote
      Vote

      We're glad you're here

      Please sign in to leave feedback

      Signed in as (Sign out)
      You have left! (?) (thinking…)
      0 comments  ·  Web Application Firewall  ·  Flag idea as inappropriate…  ·  Admin →
    9. we just wanted to have the OWASP rules in detection mode and Bot rules in prevention mode.

      Enable Bot rules in prevention mode independent of OWASP rules status.
      There should not be state dependency of other rule set on Bot Rules.

      1 vote
      Vote

      We're glad you're here

      Please sign in to leave feedback

      Signed in as (Sign out)
      You have left! (?) (thinking…)
      0 comments  ·  Web Application Firewall  ·  Flag idea as inappropriate…  ·  Admin →
    10. Application Gateway WAF policy - Custom Rule Annotation

      Please give me the ability to add annotations to an IP address or range in WAF Policy custom rules. When adding an address, the ability to add a label such as 'Company HQ' or 'MD Home IP' would be great.

      1 vote
      Vote

      We're glad you're here

      Please sign in to leave feedback

      Signed in as (Sign out)
      You have left! (?) (thinking…)
      0 comments  ·  Web Application Firewall  ·  Flag idea as inappropriate…  ·  Admin →
    11. Allow Penalty Box in WAF Policies

      Allow first time offending IP addresses to be temporarily blocked, then automatically unblocked if no additional offences are registered from the said address.

      1 vote
      Vote

      We're glad you're here

      Please sign in to leave feedback

      Signed in as (Sign out)
      You have left! (?) (thinking…)
      0 comments  ·  Web Application Firewall  ·  Flag idea as inappropriate…  ·  Admin →
    12. modify the action behavior of rule 200004

      When the traffic was blocked by rule ID 200004 of WAF log.Currently, By checking the rule log, I saw the message said ",{"message":"Access denied with code 403 (phase 2). " but the action is matched.

      The expectation of this WAF log behavior is blocked, can we modify the action from matched to blocked in WAF log?

      1 vote
      Vote

      We're glad you're here

      Please sign in to leave feedback

      Signed in as (Sign out)
      You have left! (?) (thinking…)
      0 comments  ·  Web Application Firewall  ·  Flag idea as inappropriate…  ·  Admin →
    13. App GW WAF policy change action on rule ID

      When manage WAF policy on regional WAF, we cannot change the action of some rules like global WAF policy.
      User can either enable or disable the rules, but unable to choose log traffic for some particular rules.

      1 vote
      Vote

      We're glad you're here

      Please sign in to leave feedback

      Signed in as (Sign out)
      You have left! (?) (thinking…)
      0 comments  ·  Web Application Firewall  ·  Flag idea as inappropriate…  ·  Admin →
    • Don't see your idea?

    Feedback and Knowledge Base