In the realm of enterprise applications, the firewall stands as a pivotal guardian against potential threats. This blog delves into a specific scenario where Sitecore support facilitated the implementation of Web Application Firewall (WAF) on Microsoft Azure for a Sitecore Managed Website. With WAF in place, access to the App Service was restricted solely to the Firewall’s IP, resulting in a 403 Forbidden error. The intricacies of pinpointing the exact rule causing this restriction within Azure Firewall are explored.
![](https://blog.nikkipunjabi.com/wp-content/uploads/2024/03/image-5-1024x729.png)
Simple Web Architecture:
![](https://blog.nikkipunjabi.com/wp-content/uploads/2024/03/2024-03-07-10_16_30-Clipboard.png)