Ensure application gateway uses WAF in Detection or Prevention modes

Error: Application gateway does not use WAF in Detection or Prevention modes

Bridgecrew Policy ID: BC_AZR_NETWORKING_39
Checkov Check ID: CKV_AZURE_122
Severity: LOW

Application gateway does not use WAF in Detection or Prevention modes

Description

TBA

Fix - Buildtime

Terraform

  • Resource: azurerm_web_application_firewall_policy
  • Argument: policy_settings.enabled + policy_settings.mode
resource "azurerm_web_application_firewall_policy" "example" {
                                            ...
                      policy_settings {
+                       mode                        = "Prevention"
                        request_body_check          = true
                        file_upload_limit_in_mb     = 100
                        max_request_body_size_in_kb = 128
                    }

Did this page help you?