Azure – You can now define exclusion lists in your WAF with Azure Front Door

cubesys : Mar 9, 2020 12:00:00 AM

Azure

You may already know that Azure offers a Web Application Firewall capability.

Until now, you were not able to define request attributes exclusions list to be omitted from the WAF evaluation process.

Well, good news, this is now possible.

The attribute supported for the exclusion:

  • request header,
  • cookie,
  • query string,
  • post args

To define your exclusions, you can use either PowerShell, Azure Cli or the administration portal.

PowerShell command

New-AzFrontDoorWafManagedRuleExclusionObject –Variable <RequestHeaderNames, RequestCookieNames, QueryStringArgNames or RequestBodyPostArgNames>  -Operator <operator – like equals, equalsany…> –Selector <pattern to match if the operator is not equalsany>

From the portal

Access the WAF you want to configure the exclusion and then access the Managed Rules blade, available under the Settings section

image_thumb

There you can click on Manage exclusion available in the toolbar

image_thumb[1]

And then you can define your exclusion rule

image_thumb[2]

1 min read

Azure – You can now define the name of the resource group used by Azure Recovery Service

cubesys : Jan 2, 2020 12:00:00 AM

This is not a major new capability but still interesting as it gives you more control, you can now define the name of the resource group being used...

Azure
Read More

1 min read

Azure AD – You can now enable cloud groups for administration role assignment (preview)

cubesys : Aug 5, 2020 12:00:00 AM

As you know, all administrative permissions to manage any service or capability should be granted by assigning Azure AD administration roles.

Azure AD
Read More

1 min read

Azure – You can now get your virtual machine scale sets to auto-repair

cubesys : Mar 6, 2020 12:00:00 AM

As you know, Azure Virtual Machine Scale Sets let you create a group of identical virtual machine which then will scale up or down to match the...

Azure
Read More