Protecting WebApp1 with Azure Web Application Firewall (WAF) Policy

A

The correct answer is B. Add an extension to WebApp1.

Explanation:

A web application firewall (WAF) policy is a set of rules that protects a web application from common exploits and vulnerabilities. To apply a WAF policy to a web app in Azure, you need to deploy the Azure Web Application Firewall (WAF) extension to the app service plan that hosts the web app.

To apply a WAF policy to WebApp1, you can follow these steps:

1. Create a WAF policy: To create a WAF policy, go to the Azure portal, select the WAF policy option from the left-hand menu, and then click on the "+ Add" button to create a new policy. Configure the policy according to your requirements.

2. Add the WAF extension to the app service plan: Go to the app service plan that hosts WebApp1 and click on the "Extensions" option from the left-hand menu. Click on the "+ Add" button and select the "Azure Web Application Firewall" extension from the marketplace. Configure the extension to use the WAF policy you created in step 1.

3. Configure the WAF policy for WebApp1: Once you have added the WAF extension to the app service plan, you can configure the WAF policy for WebApp1. Go to the WebApp1 settings and select the "Firewall" option from the left-hand menu. Enable the WAF and select the WAF policy you created in step 1.

4. Test the WAF policy: Once you have configured the WAF policy for WebApp1, test the policy to ensure that it is working as expected. You can do this by simulating attacks against the web app and verifying that the WAF policy is blocking the attacks.

Note that deploying an Azure Front Door or Azure Firewall may also be part of a comprehensive security strategy for protecting a web app, but neither of these options is necessary for implementing a WAF policy.