cancel
Showing results for 
Search instead for 
Did you mean: 
Create a Post

Using Azure Application Gateway as a WAF in front of CloudGuard IaaS

I've been asked several times about if CloudGuard is a WAF product (that's another discussion!) and how best can a dedicated WAF service be placed in front of CloudGuard IaaS gateways. As all the requests came from customers using Microsoft Azure, I decided to look into the Application Gateway.In short, the Application Gateway is basically a "load balancer on steroids" and provides much the same functionality as a standard SKU Azure Load Balancer, but with the added benefit of WAF capabilities. As our reference architecture in Azure uses a load balancer and one or more gateways, this seemed the obvious choice for the deployment.I wrote a lab guide to deploying this solution, as with most cloud topics, it will age very quickly, but hopefully give you a good starting point if you have a project that has strict requirements on having a WAF service at the Azure perimeter. It's very much a first draft, so there will be mistakes and also outdated information, please provide any feedback belo...
TO READ THE FULL POST it's simple and free
3 Comments

How is it with traffic decryption between app gw and Check Point? 

Employee
Employee

You can terminate SSL on the Application Gateway itself and reduce the load on the gateways, but that is optional.

Configure an application gateway with SSL termination - Azure portal | Microsoft Docs 

Employee
Employee

Does it support the latest Cloudguard HA template ??

In standard ELB, it does heath probe on TCP & forwards the traffic to active GW. How it will work with AGW ??