How to close 8443,8080 port


When I do domain scanning on the domain name, I get the information that ports 8080,8443 are open.our customers complain that this port is open.although I have setup WFA, it still shows it as can I close these ports?

You cannot. The WAF rule (something like not (cf.edge.server_port in {80 443})) will block all requests to all non-standard ports, but you cannot close them.

If you are subject to PCI DSS or similar audits, your auditor should understand that any risk has been mitigated.


Can you tell me for which reason Cloudflare uses the above ports?

They are common alternate ports for HTTP and HTTPS services.


As @i40west said they are common ports and Cloudflare offers HTTP/S on a lot of ports. You can find the full list here:

1 Like

This topic was automatically closed 3 days after the last reply. New replies are no longer allowed.