You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: articles/application-gateway/for-containers/web-application-firewall.md
+3-39Lines changed: 3 additions & 39 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -5,53 +5,17 @@ services: application-gateway
5
5
author: jackstromberg
6
6
ms.service: azure-appgw-for-containers
7
7
ms.topic: how-to
8
-
ms.date: 7/1/2025
8
+
ms.date: 7/22/2025
9
9
ms.author: jstrom
10
10
---
11
11
12
12
# Web Application Firewall on Application Gateway for Containers
13
13
14
14
## Overview
15
15
16
-
Web Application Firewall (WAF) provides centralized protection of your web applications from common exploits and vulnerabilities. All WAF functionality exists inside of a WAF policy, which can be referenced at listener or path-based routing rules within Gateway or Ingress yaml configuration.
16
+
Web Application Firewall (WAF) provides centralized protection of your web applications from common exploits and vulnerabilities. All WAF functionality exists inside of a WAF policy, which can be referenced at listener or path-based routing rules within Gateway API yaml configuration.
17
17
18
-
## Benefits
19
-
20
-
This section describes the core benefits that WAF on Application Gateway for Containers provides.
21
-
22
-
### Protection
23
-
24
-
* Protect your web applications from web vulnerabilities and attacks without modification to back-end code.
25
-
* Protect multiple web applications at the same time.
26
-
* Create custom WAF policies for different sites behind the same WAF.
27
-
* Protect your web applications from malicious bots with the IP Reputation ruleset.
28
-
29
-
### Monitoring
30
-
31
-
* Monitor attacks against your web applications by using a WAF log. The log is integrated with Azure Monitor to track WAF alerts and easily monitor trends.
32
-
* The Application Gateway for Containers WAF is integrated with Microsoft Defender for Cloud. Defender for Cloud provides a central view of the security state of all your Azure, hybrid, and multicloud resources.
33
-
34
-
### Customization
35
-
36
-
* Customize WAF rules and rule groups to suit your application requirements and eliminate false positives.
37
-
* Associate a WAF Policy for each site behind your WAF to allow for site-specific configuration
38
-
* Create custom rules to suit the needs of your application
39
-
40
-
## Features
41
-
42
-
* SQL injection protection.
43
-
* Cross-site scripting protection.
44
-
* Protection against other common web attacks, such as command injection, HTTP request smuggling, HTTP response splitting, and remote file inclusion.
45
-
* Protection against HTTP protocol violations.
46
-
* Protection against HTTP protocol anomalies, such as missing host user-agent and accept headers.
47
-
* Protection against crawlers and scanners.
48
-
* Detection of common application misconfigurations (for example, Apache and IIS).
49
-
* Configurable request size limits with lower and upper bounds.
50
-
* Exclusion lists let you omit certain request attributes from a WAF evaluation. A common example is Active Directory-inserted tokens that are used for authentication or password fields.
51
-
* Create custom rules to suit the specific needs of your applications.
52
-
* Geo-filter traffic to allow or block certain countries/regions from gaining access to your applications.
53
-
* Protect your applications from bots with the bot mitigation ruleset.
54
-
* Inspect JSON and XML in the request body
18
+
55
19
56
20
## Application Gateway for Containers implementation
0 commit comments