Azure WAF: when to use custom rules before managed OWASP rules
Know when to add an Azure WAF custom rule to block or allow precise traffic before managed OWASP/CRS rules, without hiding useful security signals.
Read article
Tag
crs
2 articles connected to this technical signal.
Azure WAF: add an OWASP/CRS exclusion without weakening all protection
Move from a qualified WAF block to a targeted OWASP/CRS exclusion in an Azure Application Gateway policy, with scope, variable, rule, validation and rollback.
Read article