Skip to main content

General availability: Bot Manager Rule Set 1.0 on regional Web Application Firewall

Published date: November 14, 2022

A new bot protection rule set (Microsoft_BotManagerRuleSet_1.0) is now generally available for Azure Web Application Firewall (WAF) with Azure Application Gateway. Added to this updated rule set are three bot categories - good, bad, and unknown. Bot signatures are managed and dynamically updated by Azure WAF. The default action for bad bot groups is set to Block, for the verified search engine crawlers group it’s set to Allow, and for the unknown bot category it’s set to Log. You may overwrite the default action with AllowBlock, or Log for any type of bot rule. 

For more details, see bot protection overview.


  • Web Application Firewall
  • Application Gateway
  • Features
  • Security