Azure Web Application Firewall (WAF) – Part 1 of 2

This video is part 1 of a step by step hands on guide on Azure Web Application Firewall or WAF.

We will look into the WAF solution from Azure offering and perform the provisioning of the solution together with configuration and testing.

We will also take a look at detection mode vs prevention mode, firewall rule sets, migration of waf policies, create our own custom rules and turn on logging and diagnostics.

How WAF provides centralized protection of your web applications from common exploits and vulnerabilities such as SQL injection attacks, cross site scripting attacks, command injection, HTTP request smuggling, HTTP response splitting and remote file inclusion.

Part 2 of this video (to be released shortly) covers the WAF logging and diagnostics piece using Application Gateway Analytics and Log Analytics.

This video (part 1):

  • Introduction to WAF
  • Diagram of WAF solution
  • Virtual network and web server configuration
  • Creating app gateway (WAF)
  • App gateway (WAF) config
  • Load balancing testing demo
  • Network Security Groups (NSGs)
  • Migration of WAF firewall policies
  • Custom rule creation
  • Blocking IP addresses using custom rules demo
  • Enabling logging and diagnostics

Next video (part 2) will cover:

  • WAF logging and diagnostics using
  • Application Gateway Analytics for Application Gateway Access Logs and Application Gateway Performance Logs
  • Log Analytics for Application Gateway Firewall Logs
  • Log Analytics running queries to search log data
  • Email alerting

Migration of WAF firewall policies powershell script
https://docs.microsoft.com/en-us/azure/web-application-firewall/ag/migrate-policy

 

About cloudinspired

Cloud Inspired authors have over 30 years experience within the IT industry, providing expertise and knowledge on infrastructure, hybrid, public and private clouds platforms. Detailed easy to follow technical videos, training and tutorial guides are provided by subject matter experts covering various technologies including Azure, IaaS, SaaS, PaaS and Microsoft 365. This website focuses mainly on the Microsoft 365 and Azure Cloud platform and provides easy to follow step by step technical guides, diagrams, cloud certifications and tutorials. The aim is to deliver articles and videos on Microsoft 365 and Azure Cloud from start to finish on many different Azure services and certifications, building and increasing the viewers knowledge in a short, logical, easy to understand format quickly getting to the point of the subject matter! Check out the YouTube channel for a full list of published Cloud Inspired videos and lets get inspired about Cloud!

View all posts by cloudinspired →

Leave a Reply

Your email address will not be published. Required fields are marked *