Web Application Firewall (WAF) can protect web service traffic on both standard and non-standard ports. When you add a website to WAF, you must specify origin server ports. WAF receives and forwards traffic based on the specified ports. This topic describes the supported standard and non-standard ports.
Standard ports
WAF can protect web service traffic on the following standard ports:
HTTP ports: 80 and 8080
HTTPS ports: 443 and 8443
Non-standard ports
Cloud native mode
If you add your website to WAF in cloud native mode, you can specify ports ranging from 0 to 65535, including non-standard ports.
CNAME record mode
If you add your website to WAF in CNAME record mode, you can specify only specific ports. Different WAF editions support different non-standard ports.
Edition | Supported non-standard port |
Subscription Basic Edition and Subscription Pro Edition | Not supported |
Subscription Business Edition and Subscription Enterprise Edition |
|
Pay-as-you-go |
To view the supported ports in the WAF console, perform the following steps:
Go to the Website Configuration page.
On the CNAME Record tab, find the domain name whose ports you want to view and click Edit in the Actions column.
In the Edit Domain Name panel, select HTTP or HTTPS and click View Port Range.
References
For information about the cloud native mode, see Cloud native mode.
For information about the CNAME record mode, see Add a domain name to WAF.
For information about how to query the ports of an instance that are added to WAF, see DescribeResourcePort.