Bot protection is now generally available in Azure Web Application Firewall
Microsoft has announced that the Web Application Firewall (WAF) bot protection feature has reached general availability on Azure Application Gateway starting this week.
Azure Web Application Firewall (WAF) is a cloud native service designed to protect customer web applications from bot attacks, common exploits, as well as common web vulnerabilities including cross-site scripting, SQL injection, broken authentication, security configuration errors and suite.
Azure WAF can be deployed with just one click in minutes with Azure Application Gateway, Azure Front Door, and Microsoft’s Azure Content Delivery Network (CDN) service.
âWe are announcing the general availability of the Web Application Firewall (WAF) bot protection feature on Application Gateway,â Microsoft said Friday.
“This feature allows users to enable a set of managed bot protection rules for their WAF to block or log requests from known malicious IP addresses.”
The new bot protection rule set can also be used with OWASP Basic Rule Sets (CRS) to provide additional protection for your web applications.
Malicious bots blocked using this new set of managed bot protection rules can be used by malicious actors for a variety of resource-intensive or malicious tasks such as scratching, scanning, and scanning for vulnerabilities in web applications.
Once the bot protection rule is configured on Azure WAF through Application Gateway, bots using known malicious IP addresses from the Microsoft Threat Intelligence feed are automatically prevented from using your server resources or looking for exploitable security vulnerabilities. .
âThe list of bot mitigation rules for known bad IP addresses is updated several times a day from the Microsoft Threat Intelligence feed to keep in sync with the bots,â Microsoft explains. “Your web applications are always protected even when bot attack vectors change.”
Additional information on configuring bot protection for the web application firewall is available on the Microsoft Azure product documentation website.
The steps required to configure a bot protection rule set include:
- Create a basic WAF policy for Application Gateway by following the instructions in Create Web Application Firewall Policies for Application Gateway.
- In the Basic policy page you created earlier, under Settings, select Rules.
- On the details page, under the Manage the rules section, from the drop-down menu, select the checkbox for the bot protection rule, and then select to safeguard.