Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
This article shows you how to configure a bot protection rule in Azure Web Application Firewall (WAF) for Application Gateway using the Azure portal.
You can enable a managed bot protection rule set for your WAF to block or log requests from known malicious IP addresses. The IP addresses are sourced from the Microsoft Threat Intelligence feed. Intelligent Security Graph powers Microsoft threat intelligence and is used by multiple services including Microsoft Defender for Cloud.
Create a WAF policy for Application Gateway by following the instructions described in Create Web Application Firewall policies for Application Gateway.
In the Application Gateway WAF policy that you created previously, under Settings, select Managed Rules.
Select Assign.
On the Assign managed rule sets page, under Additional rule set, select the desired Bot Manager rule set.
Select Save.
For more information about the Bot Manager rule set, see Web Application Firewall CRS rule groups and rules.