Azure Web Application Firewall (WAF) policy and Azure Distributed Denial-of-Service (DDoS) Protection plan management are now generally available in Microsoft Azure Firewall Manager. With the Zero Trust approach to developing and deploying applications, management in one central location is vital for ease of use and overall security.
There is no additional charge for using this management within Azure Firewall Manager. But you’ll find great benefit from central configuration and deployment. Such as protecting Virtual Networks with DDoS plans and Azure Firewall simultaneously.
Azure Web Application Firewall (WAF) Policy
This web application firewall service is cloud-native. It delivers protection for web apps from hacking practices like SQL injection and security vulnerabilities like cross-site scripting.
By centrally managing Azure Web Application (WAF) Firewall you can provide security to:
- App delivery platforms
- Azure Front Door
- Azure Application Gateway
- Networks
Manage Azure Web Application Firewall policies | Microsoft Docs
Azure DDoS Protection Plan Management
Azure DDoS Protection Standard provides enhanced DDoS mitigation features to defend against this type of attack. Automatically set to defend all public IP addresses in virtual networks, the protection is simple to enable on any new or existing virtual network. With a bonus that no application or resource changes are required.
DDoS Protection Plan can be enabled on virtual networks across subscriptions and regions all from the list within Azure Firewall Manager.
Configure Azure DDoS Protection Plan using Azure Firewall Manager | Microsoft Docs
