Azure – You can now define exclusion lists in your WAF with Azure Front Door

cubesys : Mar 9, 2020 12:00:00 AM

Azure

You may already know that Azure offers a Web Application Firewall capability.

Until now, you were not able to define request attributes exclusions list to be omitted from the WAF evaluation process.

Well, good news, this is now possible.

The attribute supported for the exclusion:

  • request header,
  • cookie,
  • query string,
  • post args

To define your exclusions, you can use either PowerShell, Azure Cli or the administration portal.

PowerShell command

New-AzFrontDoorWafManagedRuleExclusionObject –Variable <RequestHeaderNames, RequestCookieNames, QueryStringArgNames or RequestBodyPostArgNames>  -Operator <operator – like equals, equalsany…> –Selector <pattern to match if the operator is not equalsany>

From the portal

Access the WAF you want to configure the exclusion and then access the Managed Rules blade, available under the Settings section

image_thumb

There you can click on Manage exclusion available in the toolbar

image_thumb[1]

And then you can define your exclusion rule

image_thumb[2]

Azure – You can now define the name of the resource group used by Azure Recovery Service

cubesys : Jan 2, 2020 12:00:00 AM

This is not a major new capability but still interesting as it gives you more control, you can now define the name of the resource group being used...

Azure
Read More

Azure – You can now use shared disks in Azure for your clustered workloads

cubesys : Feb 18, 2020 12:00:00 AM

With this new capability added to Azure, you can now deploy/migrate your clustered workloads on Azure virtual machines.

Azure
Read More

Azure AD – You can now enable cloud groups for administration role assignment (preview)

cubesys : Aug 5, 2020 12:00:00 AM

As you know, all administrative permissions to manage any service or capability should be granted by assigning Azure AD administration roles.

Azure AD
Read More