Trace Id is missing
Skip to main content
Azure

 

Azure Web Application Firewall

Gain powerful protection for web apps and APIs with Azure cloud-native web application firewall (WAF) service.
Get started with Azure
Overview

Improve security for your web applications

  • Actively protect web applications from the Open Web Application Security Project (OWASP) top 10 security risks.
  • Defend against malicious bot and DDoS attacks at the network edge and datacenters with custom and managed rule sets.
  • Keep an eye on your environment and security alerts with detailed reports on each threat.
  • Streamline DevOps processes and increase your security posture.
FEATURES

Simple yet powerful protection

Protect web apps with managed rule sets

Increase security, reduce false positives, and improve performance with the Azure Web Application Firewall detection engine combined with updated rule sets.
Learn more

Deploy easily with no additional software agent required

Centrally define and customize rules to meet your security requirements, then apply them to protect all your web apps.
Learn more

Get insight into security and analytics

Combine Microsoft Sentinel with Azure Web Application Firewall to easily break down and view your WAF data.
Learn more

Enforce organizational compliance at scale

Use Azure Policy to help enforce organizational standards and assess compliance at scale for Web Application Firewall resources. 
Learn more

Improve security and performance at the edge

Gain advanced security, scalability, and accelerated delivery of apps, files, and content using Azure Front Door.
Learn more

Monitor security alerts and logs

Track diagnostic information including security alerts and logs that provide detailed reporting on detected threats with Azure Monitor.
Learn more
SECURITY

Built-in security and compliance

Microsoft has committed to investing $20 billion in cybersecurity over five years.
We employ more than 8,500 security and threat intelligence experts across 77 countries.
Azure has one of the largest compliance certification portfolios in the industry.
Learn more about security on Azure
A person in a denim jacket uses a tablet in a clothing store with hanging clothes in the background.
PRICING

Azure Web Application Firewall

There are no upfront costs to use Azure Web Application Firewall—pay for only what you use. No pre-commitment required. 
Explore pricing

 

Plan for your networking and network security needs

Build a secure, performant, and cost-effective networking solution for your business needs.
Learn more
CUSTOMER STORIES

See how customers innovate with Azure

  1. Elvia logo
  2. Vecozo logo.
Two men sitting at a desk, with the man on the left pointing at a computer screen while the man on the right looks on.
Elvia logo
“In our on-premises environment, each security layer was standalone, presented in several dashboards. In Azure, we wanted to focus not only on the available solutions, but also combining their functionalities into a single easy-to-deploy, easy-to-manage, highly secure environment.”
André Beerendonk, Team Manager for IT Operations, VECOZO
A scenic view of a river winding through a valley with forests in the foreground and mountains in the background,
Vecozo logo.
“Security requires a lot of investment and knowledge, and we need providers like Microsoft that we can trust so we can focus on the business. We use Azure DDoS Protection Standard and Azure Web Application Firewall on Azure Application Gateway to protect our business-critical workloads and data streams across our environment.”
Marius Matonis, Senior Technical Lead, Elvia
Back to CUSTOMER STORIES section
RESOURCES

Azure Web Application Firewall resources and documentation

  1.
Man in a gray shirt smiles while working on a laptop at a desk in a well-lit room with shelves and plants in the background.
Learning

Get started with Web Application Firewall

See how Azure Web Application Firewall protects Azure web applications from common attacks, and learn about its features, how it's deployed, and common use cases.
Learn more
Four people are engaged in a lively discussion around a table, with windows and natural light in the background.
Documentation

Implement Web Application Firewall

See how easy it is to configure Web Application Firewall in the Azure portal.
Learn more
Two individuals wearing glasses work together at a computer.
Documentation

Browse the Web Application Firewall documentation

Access all the supporting Web Application Firewall documentation in one location.
Learn more
Four people are seated in a modern office space, engaged in discussion.
Documentation

Use WAF policy on Azure Front Door

Learn how to create a WAF policy on Azure Front Door using the Azure portal.
Learn more
Four women collaborate over documents at a table in a well-lit office environment.
Learning

Get to know secure application delivery

Delve into Azure Web Application Firewall, Azure Private Link, and Azure Bastion.
Learn more
Back to Resources -Quickstarts and tutorials tab section

Frequently asked questions

  • Azure Web Application Firewall is a cloud-native service that protects your web applications from bot attacks and common web vulnerabilities such as SQL injection and cross-site scripting.
  • Yes. Enable DDoS protection on Azure Virtual Network where Azure Application Gateway is deployed. This ensures that the Azure DDoS protection service also protects the application gateway virtual IP (VIP).

Get started

Two people sit at a table with laptops, discussing something displayed on the screen.
Account signup

Get started with a free account

Start with $200 Azure credit.
Try Azure for free
A man wearing glasses and a green sweater is working on a laptop.
Account signup

Get started with pay-as-you-go pricing

There’s no upfront commitment—cancel anytime.
Create a pay-as-you-go account