Hello @Abdulloh Etaeluengoh ,
Welcome to Microsoft Q&A Platform. Thank you for reaching out & hope you are doing well.
I understand that you need information comparing features between Application gateway basic tier & standard tier and WAF.
Azure Application gateway doesn't have a basic tier.
Azure Application gateway offers 2 SKUs: Application gateway v1 SKU and v2 SKU. Both v1 and v2 SKUs offers 2 different tiers: Standard and WAF. So, Application gateway can be deployed with the following tiers: Standard/WAF (which is v1 SKU) and Standard v2/WAF v2.
You can find the feature comparison table between Application gateway v1 SKU and v2 SKU in the below link:
Azure Application Gateway is a web traffic/application layer (OSI layer 7) load balancer that enables you to manage traffic to your web applications. Application Gateway can make routing decisions based on additional attributes of an HTTP request.
Application Gateway includes the features listed in the below doc:
https://learn.microsoft.com/en-us/azure/application-gateway/features
Web Application Firewall (WAF) is a service/feature on Application gateway that provides centralized protection of your web applications from common exploits and vulnerabilities. WAF is based on rules from the OWASP (Open Web Application Security Project) core rule sets 3.1 (WAF_v2 only), 3.0, and 2.2.9.
The WAF SKU supports all the features available in the Standard SKU.
Refer: https://learn.microsoft.com/en-us/azure/web-application-firewall/overview
https://learn.microsoft.com/en-us/azure/web-application-firewall/ag/ag-overview
https://learn.microsoft.com/en-us/azure/web-application-firewall/ag/application-gateway-waf-faq
So, to summarize:
Application gateway Standard v1 and v2 SKU differs in the features provided:
Autoscaling, Zone redundancy, Static VIP, Azure Kubernetes Service (AKS) Ingress controller, Azure Key Vault integration, Rewrite HTTP(S) headers, Mutual Authentication (mTLS), Private Link support are only provided in v2 SKU and are not available with v1 SKU.
Refer: https://learn.microsoft.com/en-us/azure/application-gateway/overview-v2
Application gateway WAF v1 and v2 SKU differs in the features provided:
WAF custom rules, WAF policy associations are only provided in v2 SKU and are not available with v2 SKU.
Refer: https://learn.microsoft.com/en-us/azure/web-application-firewall/ag/custom-waf-rules-overview
https://learn.microsoft.com/en-us/azure/web-application-firewall/ag/policy-overview
Application gateway Standard and WAF tiers differs in the way they are used:
Standard tier is used only for load balancing web traffic and routing the web requests to your backend servers.
WAF tier is used along with the Application gateway load balancing and routing to protect your web applications from web vulnerabilities and attacks without modification to back-end code. Also, you can create custom rules (available with WAF v2) to either block, allow, or log requested traffic based on matching criteria.
Kindly let us know if the above helps or you need further assistance on this issue.
Please "Accept the answer" if the information helped you. This will help us and others in the community as well.