Ensure Azure front door uses WAF in Detection or Prevention modes

Error: Azure front door does not use WAF in Detection or Prevention modes

Bridgecrew Policy ID: BC_AZR_NETWORKING_40
Checkov Check ID: CKV_AZURE_123
Severity: LOW

Azure front door does not use WAF in Detection or Prevention modes

Description

TBA

Fix - Buildtime

Terraform

  • Resource: azurerm_frontdoor_firewall_policy
  • Argument: policy_settings.enabled + policy_settings.mode
resource "azurerm_frontdoor_firewall_policy" "example" {

                                            ...
                      policy_settings {
 +                      enabled                     = true
 +                      mode                        = "Prevention"
                        request_body_check          = true
                        file_upload_limit_in_mb     = 100
                        max_request_body_size_in_kb = 128
                      }
                      ...
                    }

Did this page help you?