Networking

The Networking forum covers all aspects of Networking in Azure, including endpoints, load-balancing, network security, DNS, Traffic Manager, virtual networks, and external connectivity.

Virtual Network:

  • Service overview

  • Technical documentation

  • Pricing details


    • Traffic Manager:

  • Service overview

  • Technical documentation

  • Pricing details


    • Network Watcher:

  • Service overview

  • Technical documentation

  • Pricing details


    • If you have any feedback on any aspect of Azure relating to Networking, we’d love to hear it.

    How can we improve Azure Networking?

    You've used all your votes and won't be able to post a new idea, but you can still search and comment on existing ideas.

    There are two ways to get more votes:

    • When an admin closes an idea you've voted on, you'll get your votes back from that idea.
    • You can remove your votes from an open idea you support.
    • To see ideas you have already voted on, select the "My feedback" filter and select "My open ideas".
    (thinking…)

    Enter your idea and we'll search to see if someone has already suggested it.

    If a similar idea already exists, you can support and comment on it.

    If it doesn't exist, you can post your idea so others can support it.

    Enter your idea and we'll search to see if someone has already suggested it.

    • Hot ideas
    • Top ideas
    • New ideas
    • My feedback

    1. Add RateLimitRule to the App Gateway WAF

      Currently Front Door supports a RuleType RateLimitRule - https://docs.microsoft.com/en-us/azure/web-application-firewall/afds/waf-front-door-rate-limit-powershell. Add this same rule to the AppGateway custom WAF rules - https://docs.microsoft.com/en-us/azure/web-application-firewall/ag/custom-waf-rules-overview

      139 votes
      Vote
      Sign in
      (thinking…)
      Sign in with: Microsoft
      Forgot password?
      Create a password
      Signed in as (Sign out)
      Close
      Close
      You have left! (?) (thinking…)
      8 comments  ·  Web Application Firewall  ·  Flag idea as inappropriate…  ·  Admin →

    2. WAF - please remove the post data limit (128 KB) and File size limit (100 MB) - Why should I be restricted?

      WAF - please remove the post data limit (128 KB) and File size limit (100 MB) - Why should I be restricted?

      15 votes
      Vote
      Sign in
      (thinking…)
      Sign in with: Microsoft
      Forgot password?
      Create a password
      Signed in as (Sign out)
      Close
      Close
      You have left! (?) (thinking…)
      0 comments  ·  Web Application Firewall  ·  Flag idea as inappropriate…  ·  Admin →

    3. We should have the visibility/Dashboard to see what all rules are being triggred from the owasp rules

      We should have the visibility/Dashboard to see what all rules are being triggred from the owasp 3.0

      Currently if my website goes slow and application team reports that its slow because of waf we dont know what rules are being triggered.

      We raise a ticket to Microsoft backed and then they will provide the set of rules to us. This dependency should be remove

      8 votes
      Vote
      Sign in
      (thinking…)
      Sign in with: Microsoft
      Forgot password?
      Create a password
      Signed in as (Sign out)
      Close
      Close
      You have left! (?) (thinking…)
      triaged  ·  0 comments  ·  Web Application Firewall  ·  Flag idea as inappropriate…  ·  Admin →

    4. Change default error message in prevention mode

      Is it possible to adjust the default behaviour in 'prevention' mode?
      We would like to answer the AppGw with a 404 instead of 403 to make any further attack attempts less likely.

      3 votes
      Vote
      Sign in
      (thinking…)
      Sign in with: Microsoft
      Forgot password?
      Create a password
      Signed in as (Sign out)
      Close
      Close
      You have left! (?) (thinking…)
      1 comment  ·  Web Application Firewall  ·  Flag idea as inappropriate…  ·  Admin →

    5. Web Application Firewall Logs not clear for large matches

      In the WAF logs, when a rule is matched, the 'detailsmatchess' column shows a JSON breakdown of which strings matched the rule and caused the action to trigger.

      However when the match is longer than 100 characters then the 'matchedPortion' value shows as empty which can make it hard to identify why the rule was triggered.

      In these instances, it would be beneficial to give the name of the Parameter itself that is causing the trigger for example "__VIEWSTATE".
      This could actually be added to the JSON string itself as a separate key for all matches.

      The attached…

      3 votes
      Vote
      Sign in
      (thinking…)
      Sign in with: Microsoft
      Forgot password?
      Create a password
      Signed in as (Sign out)
      Close
      Close
      You have left! (?) (thinking…)
      1 comment  ·  Web Application Firewall  ·  Flag idea as inappropriate…  ·  Admin →

    6. Allow block duraion configuration for ratelimit rule

      Please increase the block duration when configuration WAF Custom rule (ratelimit). Basically, we want to configure a WAF rules in 4 parameters per below but we cannot set the value for 1.
      • Block the IP for 1)90 minutes if the IP sends HTTP request to 2) URL x for more than 3)100 times in 4) 5 minutes.

      So far the block period is default to RateLimitDurationInMinutes and gets reset when the new cycle begins. There is no way we can configure the block period.

      1 vote
      Vote
      Sign in
      (thinking…)
      Sign in with: Microsoft
      Forgot password?
      Create a password
      Signed in as (Sign out)
      Close
      Close
      You have left! (?) (thinking…)
      0 comments  ·  Web Application Firewall  ·  Flag idea as inappropriate…  ·  Admin →
    • Don't see your idea?

    Networking

    Categories

    Feedback and Knowledge Base

    (thinking…)
    Hosted by UserVoice