Step 2. Set up HTTPS protection

Last Updated: Oct 16, 2017

HTTPS website protection only supports TCP 443 port. If your web service needs to run on other ports such as 4433, select layer four port (non-website access) protection.

Procedure

  1. Log on to the Alibaba Cloud console.

  2. Select Anti-DDoS PRO, and click Web Service.

  3. Click Add Domain to add the HTTPS website domain that you want to protect.

    Add domain

  4. Input Domain Name and Origin site domain or Origin site IP address accordingly.

    Input the domain info

  5. For HTTPS protection, select https for the Protocol option, and Port 443 will be automatically added to Origin site port.

    HTTPS protection

  6. Click Next, and then select Anti-DDos Pro instances and ISP lines for the domain.

  7. Click OK. A new domain entry will be added.

    A domain entry added.

  8. Click Upload under the HTTP/S column to enter the Upload certificate and private key page.

    Upload certificate and private key page

  9. Copy and paste the certificate and private key information, and click Upload.

    General certificates, such as *.pem, *.cer, and *.crt certificates, can be opened in text editor tools. For other special certificate formats (for example, *.pfx, and *.p7b), you have to convert the certificate to *.pem format in advance.

    Note: If multiple certificate files (for example, certificate chain file) involved, you can combine the certificate information first and upload the certificate information.

    Certificate file sample:

    1. -----BEGIN CERTIFICATE-----
    2. 62EcYPWd2Oy1vs6MTXcJSfN9Z7rZ9fmxWr2BFN2XbahgnsSXM48ixZJ4krc+1M+j2kcubVpsE2
    3. cgHdj4v8H6jUz9Ji4mr7vMNS6dXv8PUkl/qoDeNGCNdyTS5NIL5ir+g92cL8IGOkjgvhlqt9vc
    4. 65Cgb4mL+n5+DV9uOyTZTW/MojmlgfUekC2xiXa54nxJf17Y1TADGSbyJbsC0Q9nIrHsPl8YKk
    5. vRWvIAqYxXZ7wRwWWmv4TMxFhWRiNY7yZIo2ZUhl02SIDNggIEeg==
    6. -----END CERTIFICATE-----

    Private key sample:

    1. -----BEGIN RSA PRIVATE KEY-----
    2. DADTPZoOHd9WtZ3UKHJTRgNQmioPQn2bqdKHop+B/dn/4VZL7Jt8zSDGM9sTMThLyvsmLQKBgQ
    3. Cr+ujntC1kN6pGBj2Fw2l/EA/W3rYEce2tyhjgmG7rZ+A/jVE9fld5sQra6ZdwBcQJaiygoIYo
    4. aMF2EjRwc0qwHaluq0C15f6ujSoHh2e+D5zdmkTg/3NKNjqNv6xA2gYpinVDzFdZ9Zujxvuh9o
    5. 4Vqf0YF8bv5UK5G04RtKadOw==
    6. -----END RSA PRIVATE KEY-----
  10. Click Upload to complete the certificate upload.

    Note: Up to five HTTPS forwarding rules can be added. This includes configuring both HTTP and HTTPS in one forwarding rule.

Thank you! We've received your feedback.