You are designing a solution that will host 20 different web applications.
You need to recommend a solution to secure the web applications with a firewall that protects against common web-based attacks including SQL injection, cross-site scripting attacks, and session hijacks. The solution must minimize costs.
Which three Azure features should you recommend? Each correct answer presents part of the solution. NOTE: Each correct selection is worth one point.
A . VPN Gateway
B . URL-based content routing
C . Multi-site routing
D . Web Application Firewall (WAF)
E . Azure ExpressRoute
F . Azure Application Gateway
Answer: DEF
Explanation:
The web application firewall (WAF) in Azure Application Gateway helps protect web applications from common web-based attacks like SQL injection, cross-site scripting attacks, and session hijacks. It comes preconfigured with protection from threats identified by the Open Web Application Security Project (OWASP) as the top 10 common vulnerabilities. ExpressRoute connections do not go over the public Internet and thus can be considered more secure than VPN-based solutions. This allows ExpressRoute connections to offer more reliability, faster speeds, lower latencies, and higher security than typical connections over the Internet.
Reference: https://azure.microsoft.com/en-us/updates/application-gateway-web-application-firewall-in-public-preview/
https://docs.microsoft.com/en-us/azure/security/fundamentals/overview
Leave a Reply