Application gateways should have Web Application Firewall enabled

azure-applicationgateway
Cette page n'est pas encore disponible en français, sa traduction est en cours.
Si vous avez des questions ou des retours sur notre projet de traduction actuel, n'hésitez pas à nous contacter.

Description

Azure Web Application Firewall (WAF) on Application Gateway protects web applications from common exploits such as SQL injection, cross-site scripting, and other OWASP Top 10 threats by inspecting and filtering incoming HTTP traffic. Each Application Gateway should have an associated WAF policy to actively protect against web-based attacks.

Remediation

Associate a WAF policy with the Application Gateway. Create a WAF policy if one does not exist, then attach it to the gateway. For guidance, see Create a Web Application Firewall policy for Application Gateway.