az network front-door waf-policy

Manage WebApplication Firewall (WAF) policies.

Commands

az network front-door waf-policy create

Create a WAF policy.
az network front-door waf-policy delete

Delete a WAF policy.
az network front-door waf-policy list

List WAF policies.
az network front-door waf-policy managed-rule-definition

Learn about available managed rule sets.
az network front-door waf-policy managed-rule-definition list

Show a detailed list of available managed rule sets.
az network front-door waf-policy managed-rules

Change and view managed rule sets associated with your WAF policy.
az network front-door waf-policy managed-rules add

Add a managed rule set to a WAF policy.
az network front-door waf-policy managed-rules exclusion

View and alter exclusions on a managed rule set, rule group, or rule within a managed rule set.
az network front-door waf-policy managed-rules exclusion add

Add an exclusion on a managed rule set, rule group, or rule within a managed rule set.
az network front-door waf-policy managed-rules exclusion list

List the exclusions on managed rule set, rule group, or rule within a managed rule set.
az network front-door waf-policy managed-rules exclusion remove

Remove an exclusion on a managed rule set, rule group, or rule within a managed rule set.
az network front-door waf-policy managed-rules list

Show which managed rule sets are applied to a WAF policy.
az network front-door waf-policy managed-rules override

View and alter overrides on managed rules within a managed rule set.
az network front-door waf-policy managed-rules override add

Add an override on a managed rule within a managed rule set.
az network front-door waf-policy managed-rules override list

List the overrides on managed rules within a managed rule set.
az network front-door waf-policy managed-rules override remove

Remove an override on a managed rule within a managed rule set.
az network front-door waf-policy managed-rules remove

Remove a managed rule set from a WAF policy.
az network front-door waf-policy rule

Manage WAF policy custom rules.
az network front-door waf-policy rule create

Create a WAF policy custom rule. Use --defer and add a rule match-condition.
az network front-door waf-policy rule delete

Delete a WAF policy custom rule.
az network front-door waf-policy rule list

List WAF policy custom rules.
az network front-door waf-policy rule match-condition

Alter match-conditions associated with a WAF policy custom rule.
az network front-door waf-policy rule match-condition add

Add a match-condition to a WAF policy custom rule.
az network front-door waf-policy rule match-condition list

Show all match-conditions associated with a WAF policy custom rule.
az network front-door waf-policy rule match-condition remove

Remove a match-condition from a WAF policy custom rule.
az network front-door waf-policy rule show

Get the details of a WAF policy custom rule.
az network front-door waf-policy rule update

Alter the details of a WAF policy custom rule.
az network front-door waf-policy show

Get the details of a WAF policy.
az network front-door waf-policy update

Update settings of a WAF policy.

az network front-door waf-policy create

Create a WAF policy.

az network front-door waf-policy create --name
                                        --resource-group
                                        [--custom-block-response-body]
                                        [--custom-block-response-status-code]
                                        [--disabled {false, true}]
                                        [--mode {Detection, Prevention}]
                                        [--redirect-url]
                                        [--tags]

Required Parameters

--name -n

Name of the WAF policy.

--resource-group -g

Name of resource group. You can configure the default group using az configure --defaults group=<name>.

Optional Parameters

--custom-block-response-body

Body to return for blocked requests.

--custom-block-response-status-code

HTTP status to return for blocked requests.

--disabled

Create in a disabled state.

accepted values: false, true
--mode

Firewall policy mode.

accepted values: Detection, Prevention
--redirect-url

URL used for redirect rule action.

--tags

Space-separated tags: key[=value] [key[=value] ...]. Use "" to clear existing tags.

az network front-door waf-policy delete

Delete a WAF policy.

az network front-door waf-policy delete --name
                                        --resource-group

Required Parameters

--name -n

Name of the WAF policy.

--resource-group -g

Name of resource group. You can configure the default group using az configure --defaults group=<name>.

az network front-door waf-policy list

List WAF policies.

az network front-door waf-policy list --resource-group

Required Parameters

--resource-group -g

Name of resource group. You can configure the default group using az configure --defaults group=<name>.

az network front-door waf-policy show

Get the details of a WAF policy.

az network front-door waf-policy show --name
                                      --resource-group

Required Parameters

--name -n

Name of the WAF policy.

--resource-group -g

Name of resource group. You can configure the default group using az configure --defaults group=<name>.

az network front-door waf-policy update

Update settings of a WAF policy.

az network front-door waf-policy update --name
                                        --resource-group
                                        [--add]
                                        [--custom-block-response-body]
                                        [--custom-block-response-status-code]
                                        [--disabled {false, true}]
                                        [--force-string]
                                        [--mode {Detection, Prevention}]
                                        [--redirect-url]
                                        [--remove]
                                        [--set]
                                        [--tags]

Required Parameters

--name -n

Name of the WAF policy.

--resource-group -g

Name of resource group. You can configure the default group using az configure --defaults group=<name>.

Optional Parameters

--add

Add an object to a list of objects by specifying a path and key value pairs. Example: --add property.listProperty <key=value, string or JSON string>.

--custom-block-response-body

Body to return for blocked requests.

--custom-block-response-status-code

HTTP status to return for blocked requests.

--disabled

Create in a disabled state.

accepted values: false, true
--force-string

When using 'set' or 'add', preserve string literals instead of attempting to convert to JSON.

--mode

Firewall policy mode.

accepted values: Detection, Prevention
--redirect-url

URL used for redirect rule action.

--remove

Remove a property or an element from a list. Example: --remove property.list OR --remove propertyToRemove.

--set

Update an object by specifying a property path and value to set. Example: --set property1.property2=.

--tags

Space-separated tags: key[=value] [key[=value] ...]. Use "" to clear existing tags.