Merge pull request #204149 from v-rajagt/victorh

PRMerger17 · web-flow · commit 7a5e494f9720 · 2022-07-11T14:47:24.000-07:00
link fixed.
diff --git a/articles/web-application-firewall/ag/application-gateway-web-application-firewall-portal.md b/articles/web-application-firewall/ag/application-gateway-web-application-firewall-portal.md
@@ -12,7 +12,7 @@ ms.author: victorh
 
 # Tutorial: Create an application gateway with a Web Application Firewall using the Azure portal
 
-This tutorial shows you how to use the Azure portal to create an Application Gateway with a Web Application Firewall (WAF). The WAF uses [OWASP](https://www.owasp.org/index.php/Category:OWASP_ModSecurity_Core_Rule_Set_Project) rules to protect your application. These rules include protection against attacks such as SQL injection, cross-site scripting attacks, and session hijacks. After creating the application gateway, you test it to make sure it's working correctly. With Azure Application Gateway, you direct your application web traffic to specific resources by assigning listeners to ports, creating rules, and adding resources to a backend pool. For the sake of simplicity, this tutorial uses a simple setup with a public front-end IP, a basic listener to host a single site on this application gateway, two virtual machines used for the backend pool, and a basic request routing rule.
+This tutorial shows you how to use the Azure portal to create an Application Gateway with a Web Application Firewall (WAF). The WAF uses [OWASP](https://owasp.org/www-project-modsecurity-core-rule-set/) rules to protect your application. These rules include protection against attacks such as SQL injection, cross-site scripting attacks, and session hijacks. After creating the application gateway, you test it to make sure it's working correctly. With Azure Application Gateway, you direct your application web traffic to specific resources by assigning listeners to ports, creating rules, and adding resources to a backend pool. For the sake of simplicity, this tutorial uses a simple setup with a public front-end IP, a basic listener to host a single site on this application gateway, two virtual machines used for the backend pool, and a basic request routing rule.
 
 In this tutorial, you learn how to:
 
@@ -239,4 +239,4 @@ To remove the resource group:
 ## Next steps
 
 > [!div class="nextstepaction"]
-> [Learn more about Web Application Firewall](../overview.md)
+> [Learn more about Web Application Firewall](../overview.md)
diff --git a/articles/web-application-firewall/ag/tutorial-restrict-web-traffic-cli.md b/articles/web-application-firewall/ag/tutorial-restrict-web-traffic-cli.md
@@ -12,7 +12,7 @@ ms.custom: devx-track-azurecli
 
 # Enable Web Application Firewall using the Azure CLI
 
-You can restrict traffic on an application gateway with a [Web Application Firewall](ag-overview.md) (WAF). The WAF uses [OWASP](https://www.owasp.org/index.php/Category:OWASP_ModSecurity_Core_Rule_Set_Project) rules to protect your application. These rules include protection against attacks such as SQL injection, cross-site scripting attacks, and session hijacks.
+You can restrict traffic on an application gateway with a [Web Application Firewall](ag-overview.md) (WAF). The WAF uses [OWASP](https://owasp.org/www-project-modsecurity-core-rule-set/) rules to protect your application. These rules include protection against attacks such as SQL injection, cross-site scripting attacks, and session hijacks.
 
 In this article, you learn how to:
 
diff --git a/articles/web-application-firewall/ag/tutorial-restrict-web-traffic-powershell.md b/articles/web-application-firewall/ag/tutorial-restrict-web-traffic-powershell.md
@@ -13,7 +13,7 @@ ms.custom: devx-track-azurepowershell
 
 # Enable Web Application Firewall using Azure PowerShell
 
-You can restrict traffic on an application gateway with a [Web Application Firewall](ag-overview.md) (WAF). The WAF uses [OWASP](https://www.owasp.org/index.php/Category:OWASP_ModSecurity_Core_Rule_Set_Project) rules to protect your application. These rules include protection against attacks such as SQL injection, cross-site scripting attacks, and session hijacks. 
+You can restrict traffic on an application gateway with a [Web Application Firewall](ag-overview.md) (WAF). The WAF uses [OWASP](https://owasp.org/www-project-modsecurity-core-rule-set/) rules to protect your application. These rules include protection against attacks such as SQL injection, cross-site scripting attacks, and session hijacks. 
 
 In this article, you learn how to:
 
