Azure Web Application Firewall
An Azure service that provides protection for web apps.
342 questions
Azure WAF bot protection ruleset. Meaning of log ID 300700
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(9.6, 43%, 10%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EE%3C/text%3E%3C/svg%3E)
eenchev
0
Reputation points
I have enabled bot protection ruleset for a waf policy. The DRS ruleset normally has a detailed message in the logs but for the bot protection I am finding it hard to identify the reason for a match for 300700 id Other bots (group Unknownbots).
We have thousands of such logs. I know default action is log and using allow is not recommended which will stop further ruleset checks.
In general I want to finetune the ruleid so I decrease the noise from these log messages and add 1-2 exclusions. Details_data field is not very helpful. What does it see in REQUEST_HEADERS:
Sign in to answer