If you’ve enabled Web Application Firewall support for your Azure Application Gateway, then WAF will automatically block malicious traffic that matches rules implemented by Azure. Blue Matador watches the BlockedCount metric and creates events when WAF rules are triggered.
WAF protects against the following web vulnerabilities:
When malicious traffic is blocked by WAF, typically no further action is required. However, consider checking Azure Security Center for details on the attack or checking your Application Gateway logs in Azure Monitor.