All Products
Search

This Product

    Anti-DDoS:Specify custom ports for website protection

    Document Center

    Anti-DDoS:Specify custom ports for website protection

    Last Updated:Feb 27, 2026

    By default, Anti-DDoS Proxy protects websites over HTTP port 80 and HTTPS port 443. If your website serves traffic on other ports, you need to specify those ports as custom ports in the website configuration. This topic explains the limits on custom ports and how to configure them.

    When to use custom ports

    You need to specify custom ports if your website uses any port other than HTTP 80 or HTTPS 443. For example, if your web application runs on HTTP port 8080 or HTTPS port 8443, you must add these as custom ports so that Anti-DDoS Proxy can forward and protect traffic on those ports.

    You can specify custom ports when you first add a website to your Anti-DDoS Proxy instance, or change them later by editing the website configuration. For information about adding websites, see Add one or more websites.

    Limits

    Supported port range

    • HTTP ports: 80 to 65535

    • HTTPS ports: 80 to 65535

    Note

    However, based on network access tests, some ISPs may block traffic to certain vulnerable ports due to security risks. These vulnerable TCP ports include 42, 135, 137, 138, 139, 445, 593, 1025, 1434, 1068, 3127, 3128, 3129, 3130, 4444, 5554, 5800, 5900, and 9996.

    If your web service uses any of these vulnerable ports, users in some regions may not be able to access your service after you connect it to Anti-DDoS Proxy. Therefore, before you connect your web service to Anti-DDoS Proxy, ensure that it uses other, non-vulnerable ports.

    Maximum number of ports

    You can specify up to 10 custom ports per Anti-DDoS Proxy instance across all websites. Both custom HTTP ports and HTTPS ports count toward this limit.

    For example, suppose you add Website A and Website B to the same instance. Website A uses HTTP, and Website B uses HTTPS. If you specify HTTP ports 80 and 8080 for Website A, you can specify up to eight HTTPS ports for Website B.

    Prerequisites

    • You have purchased an Anti-DDoS Proxy instance.

    • You have added the website to your Anti-DDoS Proxy instance. For more information, see Add one or more websites.

    Procedure

    To change custom ports for an existing website configuration, perform the following steps:

    1. Log on to the Anti-DDoS Proxy console.

    2. In the top navigation bar, select the region of your instance.

      • Anti-DDoS Proxy (Chinese Mainland): Choose the Chinese Mainland region.

      • Anti-DDoS Proxy (Outside Chinese Mainland): Choose the Outside Chinese Mainland region.

    3. In the left-side navigation pane, choose Provisioning > Website Config.

    4. Find the website whose ports you want to change and click Edit in the Actions column.

    5. On the page that appears, find Server Port. Enter custom ports in the HTTP or HTTPS section. Separate multiple ports with commas (,). Then, click Next. image

    6. Click Complete and Return to Domain Name List. In the Note message, view the modifications and click OK.

    FAQ

    What are the limits for the ports that can be added to Anti-DDoS Proxy (Chinese Mainland)?