Front Door endpoints should use WAF

Security · Front Door · Rule · 2020_06 · Critical

Enable Web Application Firewall (WAF) policies on each Front Door endpoint.

Description

Front Door endpoints can optionally be configured with a WAF policy. When configured, every incoming request through Front Door is filtered by the WAF policy.

Recommendation

Consider enabling a WAF policy on each Front Door endpoint.

Links

• SE:06 Network controls
• Securing PaaS deployments
• Azure Web Application Firewall on Azure Front Door
• Azure deployment reference

Comments