![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(9.6, 91%, 10%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERV%3C/text%3E%3C/svg%3E)
Azure Web Application Firewall
An Azure service that provides protection for web apps.
342 questions
Hello @Anonymous ,
Welcome to Microsoft Q&A Platform. Thank you for reaching out & hope you are doing well.
I understand that your Azure WAF is logging errors for various APIs with rule id 300700 'other bots' and you would like to know more details about the same.
I discussed this internally with the Azure WAF Product Group team and below is the update on same:
We won't be able to publish the internal definitions of our rules, as it would enable Bot creators to circumvent the rules. The bot manager rules are broken down into three categories as below:
- BadBots (
Bot100*) - Bot with malicious intent (bad IP reputation or modified user agents) - GoodBots (
Bot200*) - Search engine traffic - UnknownBots (
Bot300*) - Other bot user agents that may or may not be malicious.
The Bot300* rules are just to inform the customer that the traffic is originating from a bot (non-browser traffic). The intent of the bot is unknown (it could be valid requests from users of the service, or it could be malicious attackers using a custom tool).
Microsoft_BotManagerRuleSet-1.0-UnknownBots-Bot300700 - this is classified as an "unknown" bot which are published user agents without additional validation.
If your requests are getting blocked by this rule ID, then you can check the details or message field of your WAF logs and see what is the matchVariableName and matchVariableValue triggered for those requests.
In most cases, I've seen headers with "non-browser user agent" getting blocked by this rule.
So, I would request you to go through your WAF rules and validate the requests and if you believe that legitimate traffic is getting blocked, you can create custom rules to allow that particular traffic.
Application gateway WAF custom rules: https://learn.microsoft.com/en-us/azure/web-application-firewall/ag/custom-waf-rules-overview
Azure Front Door WAF custom rules: https://learn.microsoft.com/en-us/azure/web-application-firewall/afds/waf-front-door-custom-rules
If you need help in understanding your WAF log, please share the particular WAF log and we can discuss about it further.
Kindly let us know if the above helps or you need further assistance on this issue.
Please "Accept the answer" if the information helped you. This will help us and others in the community as well.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(240, 10%, 33%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMM%3C/text%3E%3C/svg%3E)