- Contoso needs to protect their Internet-facing web apps from common attacks. Which Azure service(s) offers out-of-box implementation of Open Web Application Security Project (OWASP) vulnerability rule sets? Choose all that apply?
See "Azure Web Application Firewall (WAF) on Azure Application Gateway" at https://docs.microsoft.com/en-us/azure/web-application-firewall/ag/ag-overview and "Azure Front Door" at https://docs.microsoft.com/en-us/azure/frontdoor/front-door-application-security [Describe Security, Privacy, Compliance, and Trust]
MS docs: There are two options when applying WAF policies in Azure. WAF with Azure Front Door is a globally distributed, edge security solution. WAF with Application Gateway is a regional, dedicated solution. Uhhh.. ...does that mean Front Door is more expensive?