Step 2. Set up HTTPS protection

Last Updated: Jul 28, 2017

HTTPS website protection only supports TCP 443 port. If your web service needs to run on other ports such as 4433, select layer 4 port (non-website access) protection.


  1. Log on to the Alibaba Cloud console.

  2. Click Anti-DDoS Basic service under Security.

  3. Unfold Anti-DDoS PRO to open Instance List.

  4. Select Website access of the Anti-DDoS instance to be set up.


  5. Click Add one domain name on the Security Configuration page.


  6. Input Domain Name and Origin site domain or Origin site IP address accordingly.

  7. For HTTPS protection, select https under Protocol type, and Port 443 will be automatically added to Origin site port.


  8. Click OK. A new domain entry will be added to the list.

  9. Click Expand protection panel under the added domain to unfold it.

  10. Click Upload certificate under HTTPS encryption to enter the Upload certificate and private key page.


  11. Click View, and select the Certificates file and Private Key file to be uploaded.


  12. Click Upload to complete.


    • Up to 5 HTTPS forwarding rules can be added. This includes configuring both HTTP and HTTPS in one forwarding rule.
    • Certificate file only supports .pem format, and Private Key file only supports .key format. The file size should be less than 100K.
    • The file name supports the use of English characters and numbers, and length must be less than 8 characters. Special characters such as “-”, “*”, “.” and so on, are not allowed.
Thank you! We've received your feedback.