Web Application Firewall (WAF) protects services that use standard ports and non-standard ports. The standard ports include ports 80, 8080, 443, and 8443. You can also use non-standard ports that are specified by WAF. You can customize server ports when you configure WAF for your website. WAF receives and redirects traffic on the server ports that you specify.
Background information
Precautions
- To protect websites that use non-standard ports, you must use a WAF instance of the Business edition or higher.
- The maximum number of ports that a WAF instance supports is the total number of standard and non-standard ports that the instance supports.
- You can use non-standard ports only when you use a WAF instance of the Exclusive edition or when you add your website to a WAF instance of the Enterprise edition in transparent proxy mode. In other cases, you can use only the non-standard ports that are specified by WAF.
View the supported ports in the WAF console
- In the left-side navigation pane of the WAF console, choose .
- Find the domain name for which you want to configure ports and click Edit in the Actions column.
- On the Edit page, find the Destination Server Port section, click Customize, and then enter port numbers based on your business requirements.
For more information, see Configure ports.
Ports that each WAF edition supports
Subscription WAF instances of the Business edition or higher allow you to configure non-standard ports.
The following table lists the ports that each WAF edition supports. The supported ports in the console shall prevail. For more information about how to view the supported ports in the console, see Configure ports.
WAF edition | Maximum number of ports supported by each WAF instance | Supported standard port (default) | Supported non-standard port (custom) |
---|---|---|---|
Pro | 4 |
|
Not supported.
Note The Pro edition of WAF does not support non-standard ports regardless of the access
mode, CNAME or transparent proxy, that you use.
|
Business | 10 (This is the total number of standard ports and non-standard ports.) |
|
The non-standard ports that you can use are the same regardless of the access mode,
CNAME or transparent proxy, that you use. You can use the following non-standard ports
that are specified by WAF:
|
Enterprise | 50 (This is the total number of standard ports and non-standard ports.) |
|
The non-standard ports that you can use vary based on the access mode, CNAME or transparent
proxy, that you use. The following list describes the differences:
|
References
If my website receives requests over an unconfigured port, is the origin server threatened?
Does WAF support custom server ports?
What do I do if services on non-standard ports cannot be added to WAF of the Pro edition?