Firewall rules: You can allow or disallow traffic flow between zones and networks based on the matching criteria. You can implement policies, specify access for endpoint devices and servers, and prioritize traffic. Web server protection rules: You can configure WAF rules to protect your web server...
PrepareNetworkPoliciesRequest PrivateLinkServiceConnection PrivateLinkServiceConnectionState PrivateLinkServiceIpConfiguration PrivateLinkServicePropertiesAutoApproval PrivateLinkServicePropertiesVisibility ProbeProtocol ProcessorArchitecture Protocol ProtocolConfiguration ProtocolCustomSettingsFormat ProvisioningState PublicIPAddress...
Note: The maximum number of rule collection groups per firewall policy is 90, for policies created after July 2022, and 50 for policies created before July 2022. If you expect the number of workloads to surpass these values, create a rule collection group per L...
WithPrivateLinkServiceNetworkPolicies Subnet.UpdateStages.WithRouteTable Subnet.UpdateStages.WithServiceEndpoint SubnetAssociation SubnetListResult SyncRemoteAddressSpace TagsObject Topology Topology.Definition Topology.DefinitionStages Topology.DefinitionStages.WithExecute Topology.DefinitionStages.WithExecuteAndSubnet ...
Firewall security policies are also called firewall rules and firewall policies. This document describes the definition, composition, configuration, and matching principles of security policies.
The firewall processes policies and rules in order, progressing from the global context, to the route domain context, and then to either the virtual server or self IP context. Management port rules are processed separately, and are not processed after previous rules. Rules can be viewed in one...
Additional information can be seen in the FirewallRuleName Protocol and Settings CSP reference. For more information, see the configuration service provider reference. Blocked policies and rules If a policy targets a bad rule, subsequent policy rules may also fail to process....
WAF policies. You can disable or enable individual rules within the Managed Rule Set to meet your application requirements. You can also set specific actions per rule. The DRS/CRS supports block, log and anomaly score actions. The Bot Manager ruleset supports the allow, block and log actio...
If you are subscribed to Shield Advanced, then you can use its rules and policies to protect from centralized DDoS attacks. For CloudFront distributions and Application Load Balancers, the default Shield Advanced policies deployed by the solution enable application layer DDoS mitigat...
Most importantly, however, Service Pack 1 adds support for Network Access Protection (NAP). NAP is a policy enforcement tool that ensures that managed and non-compromised clients are up-to-date with the latest security policies, updates, and anti-malware definitions before they are permitted to ...