How can we improve Azure Networking?

← Networking

Application Gateway WAF needs function.

Application Gateway WAF hasn't function creating custom rules and operating management UI for regular or custom rules. Also, we hope functional enhancement for WAF logs. We'd like to get the detail message if alert is happen.

Thank you for your time and consideration.

58 votes
Vote
Sign in
(thinking…)
Password icon
Signed in as (Sign out)
Close
Close
You have left! (?) (thinking…)
anonymous shared this idea  ·   ·  Flag idea as inappropriate…  ·  Admin →

4 comments

Sign in
(thinking…)
Password icon
Signed in as (Sign out)
Close
Close
Submitting...
  • Kyle commented  ·   ·  Flag as inappropriate

    Additional functionality to inspect headers to see what kind of request is coming in and based upon that to have exceptions for IP's/ ranges allowed to make those kinds of requests.

    More robust feature set for header inspection and exception management would be greatly appreciated!

  • Anonymous commented  ·   ·  Flag as inappropriate

    Agreed. Some enhancements I would suggest would be an option to enable the additional methods for API, such as PUT and PATCH. Also allowing rules to be individually set to Blocking OR Logging mode. Enhancing the exclusions to allow specific paths for an exclusion. The ability to set rules based on specific paths, ex. "/api". And finally, the biggest enhancement would be the ability to create custom rules.

  • Joon du Randt commented  ·   ·  Flag as inappropriate

    I agree 100% on this one. I had a problem where the app gateway is picking up SQL injection characters in an auth token HTTP header.

    I need the ability to exclude specific URLs, cookies or HTTP headers from the WAF rule matching

    At the moment I have to disable the entire rule, I would much rather just exclude that header!

Networking: Application Gateway

Feedback and Knowledge Base

(thinking…)
Hosted by UserVoice