Thanks for the video!! I was stuck trying to migrate the WAF policy over to the Appgateway thru the Azure Portal. Until I saw this video and used the script!! Thank you so much!
@CloudInspired4 жыл бұрын
No problem, glad it helped you out!
@psudoevil4 жыл бұрын
@@CloudInspired Have a presentation on this tomorrow for work hence why I needed it. Only problem I have is getting something to test the WAF. I have 2 VMs running with IIS in the backend but not sure what to use for say a SQL injection or xss.
@cassandraparisi20883 жыл бұрын
Hi! Thanks for the video. I've run into some issues where the WAF allows in some IPs but not others. Why do you think this is happening?
@isc1971 Жыл бұрын
Great video, clear content and wel explained
@CloudInspired Жыл бұрын
Thanks Ian. Glad it was helpful!
@daneackbarali57674 жыл бұрын
Hey Fantastic video. Quick Question any idea how to allow HTTPS through--?
@CloudInspired4 жыл бұрын
Hello Dane, Thank you for your comment. When you create a routing rule, instead of HTTP choose HTTPS as the protocol and 443 as the port. Also when adding a HTTP setting choose backend protocol as HTTPS, backed port 443. For the NSG firewall (WAF-NSG for the example in this video), allow port 443 to your VMs or webservice on the backend subnet.
@daneackbarali57674 жыл бұрын
@@CloudInspiredok--- did you install certs or PFX file on any of the settings?
@daneackbarali57674 жыл бұрын
Listeners? as as well
@CloudInspired4 жыл бұрын
During this video tutorial, HTTP was only configured therefore no certificates were required. PFX certificates can be installed on the Application Gateway for SSL. The listener is configured as part of the routing rule. This guide should point you in the right direction to configure HTTPS including certificates docs.microsoft.com/en-us/azure/application-gateway/create-ssl-portal
@oghockey19584 жыл бұрын
Great video, but after I run the script there's nothing under MAIN at the prompt and there's no WAF created or associated to the gateway. Any ideas?
@CloudInspired4 жыл бұрын
Hello, are you using the Azure Cloud Shell (powershell) within the Azure portal under your subscription to run the script? All I did was from the Microsoft site under docs.microsoft.com/en-us/azure/web-application-firewall/ag/migrate-policy clicked "Try it" where the script is located on that page to open and login to the Azure Cloud Shell within the portal for your subscription. Then copied and pasted the WAF migration script from the Microsoft site into the portal to run it. That worked OK for me. Did you get any errors?
@oghockey19584 жыл бұрын
@@CloudInspired No errors, just gets to the Main at the prompt and nothing loads after main.
@CloudInspired4 жыл бұрын
It might be worth checking the following in the Microsoft WAF policies document docs.microsoft.com/en-us/azure/web-application-firewall/ag/migrate-policy under the "Note" section to see if this applies to your WAF configuration: The script does not complete a migration if the following conditions exist: An entire rule is disabled. To complete a migration, make sure an entire rulegroup is not disabled. An exclusion entry(s) with the Equals any operator. To complete a migration, make sure exclusion entries with Equals Any operator is not present. For more information, see the ValidateInput function in the script.
@IceBluemarketingandd4 жыл бұрын
@@oghockey1958 Hit Enter!
@psudoevil4 жыл бұрын
@@IceBluemarketingandd Worked for me too!! Asked me if I wanted to overwrite my existing WAF policy. Then boom!!
@clhk123 жыл бұрын
good explanation
@CloudInspired3 жыл бұрын
Thanks and welcome Charles
@itteam69232 жыл бұрын
Thanks for the video. i was stuck trying to configure https. already change HTTP protocol to HTTPS on both side, but the health probe still error (when i use HTTP is working). can you create video how to configure HTTPS?
@CloudInspired Жыл бұрын
Hello, at the routing rule creation (around 06:39) you would need to choose HTTPS for the backend pool and then open up 443 on the NSG firewall.
@grahambrown58744 жыл бұрын
Very good explaniation👍
@CloudInspired4 жыл бұрын
Thanks Graham, glad you like it.
@rayperez99133 жыл бұрын
Great video. Thank you for sharing
@CloudInspired3 жыл бұрын
Thanks for watching Ray!
@Vihaansingh31 Жыл бұрын
Can i please get web app code or something which can be helpful?
@45blank163 жыл бұрын
Why did you create NSG when you have a WAF? :)
@CloudInspired3 жыл бұрын
This is to lock down network access. Created an NSG for the WAG/WAF subnet and restrict the traffic to that subnet.
@CarlosDiaz-nc8wl3 жыл бұрын
my hero!
@CloudInspired3 жыл бұрын
Thanks!
@SuperMagic20134 жыл бұрын
how to publish any site in azure waf?
@CloudInspired4 жыл бұрын
Please refer to the following to see if helps in your scenario? docs.microsoft.com/en-us/azure/web-application-firewall/ag/application-gateway-web-application-firewall-portal