I have created the following resources in Azure portal:
- Function App (API to read data from BD and retrieves responses)
- API Management service (to handle basic API security)
- Front Door and CDN profiles (to make API security better)
- Front Door WAF policy (to apply specific security rules)
Question is how to apply created own WAF policy (item 4) into Front door (item 3) as WAF policy cannot be selected in Front door->Front Door and CDN profiles? It says ‘No existing policies in the current subscription’.
Pease see two print screens:
I tried to create Front Door in different settings/offerings but no success.
2
Answers
With help of Azure support team, the following solution has been found. When creating Web Application Firewall resource in Azure, the following settings needs to be applied:
That should apply WAF policy to Front desk.
Check the tier you have selected to add existing WAF Policies are also created in same tier (standard or premium)
I have created 4 WAF Policies of different tiers and types:
3 Policies belongs to Front Door and are of Classic, Standard and Premium Global Policies.
1 Policy belongs to Regional (Application Gateway) WAF Policy.
Updated Answer:
Standard FD & Standard WAF Policy:
Premium FD Profile with Premium WAF Policy:
Using Azure Sponsorship Subscription: