我想请求您帮助创建 Azure WAF 规则排除。
您可以在此处查看被阻止的 URL 详细信息:https://imgur.com/B2cLtbd(被 Anomaly 分数阻止)或以下:
requestUri_s
/Account/RegisterConfirmation?userId=CODE&code=CODE&redirectUrl=https://XYXYXYXY.com/EventRegistration/RegisterLink?parentId=CODE
ruleSetVersion_s
3.2
ruleId_s
931130
action_s
Matched
详情_留言_s
Pattern match ^(?i:file|ftps?|https?)://(.*)$; Begin With RequestHeaders:host at TX:rfi_parameter_.*.
详细数据_s
{https://XYXYXYXY.com/EventRegistration/RegisterLink?parentId=CODE found within [ARGS:redirectUrl:https://XYXYXYXY.com/EventRegistration/RegisterLink?parentId=CODE]} and { found within [TX:rfi_parameter_args:redirecturl:XYXYXYXY.com/EventRegistration/RegisterLink?parentId=CODE]}
详细信息_文件_s
REQUEST-931-APPLICATION-ATTACK-RFI.conf
。 .
已解决 通过在上述规则中添加排除来解决这个问题:
Req Arg Nam >包含>redirectUrl 参考最后一个示例:https://learn.microsoft.com/en-us/azure/web-application-firewall/ag/application-gateway-waf-configuration?tabs=portal#next-steps