All Products
Search
Document Center

Anti-DDoS:Specify custom ports

Last Updated:Mar 06, 2024

After websites are added to Anti-DDoS Proxy, Anti-DDoS Proxy protects the websites that provide services over HTTP port 80 and HTTPS port 443 by default. If your website provides services over ports other than HTTP port 80 and HTTPS port 443, you must specify the custom ports when you add your website to Anti-DDoS Proxy. This topic describes how to change ports in the website configuration.

Limits on custom ports

Limits on supported ports

The ports that are supported vary based on the function plan of your Anti-DDoS Proxy instance. If the supported ports of an instance that uses the Standard function plan do not meet your requirements, upgrade the instance to the Enhanced function plan. For more information, see Renew an instance.

Function plan

Port

Standard function plan

  • HTTP ports: ports 80 and 8080

  • HTTPS ports: ports 443 and 8443

Enhanced function plan

  • HTTP ports: ports that range from 80 to 65535

  • HTTPS ports: ports that range from 80 to 65535

    Note

    However, security risks may be caused by vulnerable ports, and ISPs block service traffic that is destined for the vulnerable ports. The following ports are vulnerable TCP ports: 42, 135, 137, 138, 139, 445, 593, 1025, 1434, 1068, 3127, 3128, 3129, 3130, 4444, 5554, 5800, 5900, and 9996.

    If your website that is protected by Anti-DDoS Pro uses the preceding vulnerable ports, your website may be inaccessible in some regions. Therefore, before you add your web service to Anti-DDoS Pro, make sure that the website does not use the vulnerable ports.

Limits on the number of ports

You can specify up to 10 custom ports for all websites that are added to an instance. Both custom HTTP ports and HTTPS ports are counted.

For example, you want to add Website A and Website B to your Anti-DDoS Proxy instance, Website A provides services over HTTP ports, and Website B provides services over HTTPS ports.

If you specify HTTP ports 80 and 8080 for Website A, you can specify up to eight HTTPS ports for Website B.

Procedure

You can specify one or more custom ports when you add a website to your instance. For more information, see Add one or more websites. After you add a website to your instance, you can perform the following steps to change one or more ports.

  1. Log on to the Anti-DDoS Proxy console.

  2. In the top navigation bar, select the region of your instance.

    • Anti-DDoS Proxy (Chinese Mainland): If your instance is an Anti-DDoS Proxy (Chinese Mainland) instance, select Chinese Mainland.

    • Anti-DDoS Proxy (Outside Chinese Mainland): If your instance is an Anti-DDoS Proxy (Outside Chinese Mainland), select Outside Chinese Mainland.

  3. In the left-side navigation pane, choose Provisioning > Website Config.

  4. Find the website whose ports you want to change and click Edit in the Actions column.

  5. On the page that appears, click Custom to the right of Server Port.自定义

  6. Click the HTTP or HTTPS tab and enter custom ports. Separate the ports with commas (,). Then, click Save.

    服务器端口

  7. Click OK. In the Note message, view the modifications and click OK.

FAQ

What are the limits for the ports that can be added to Anti-DDoS Proxy (Chinese Mainland)?