I suggest you ...

Application Gateway WAF needs function.

Application Gateway WAF hasn't function creating custom rules and operating management UI for regular or custom rules. Also, we hope functional enhancement for WAF logs. We'd like to get the detail message if alert is happen.

Thank you for your time and consideration.

37 votes
Vote
Sign in
Check!
(thinking…)
Reset
or sign in with
  • facebook
  • google
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    anonymous shared this idea  ·   ·  Flag idea as inappropriate…  ·  Admin →

    2 comments

    Sign in
    Check!
    (thinking…)
    Reset
    or sign in with
    • facebook
    • google
      Password icon
      Signed in as (Sign out)
      Submitting...
      • Joon du Randt commented  ·   ·  Flag as inappropriate

        I agree 100% on this one. I had a problem where the app gateway is picking up SQL injection characters in an auth token HTTP header.

        I need the ability to exclude specific URLs, cookies or HTTP headers from the WAF rule matching

        At the moment I have to disable the entire rule, I would much rather just exclude that header!

      Feedback and Knowledge Base