Hello,
When I do domain scanning on the domain name, I get the information that ports 8080,8443 are open.our customers complain that this port is open.although I have setup WFA, it still shows it as open.how can I close these ports?
You cannot. The WAF rule (something like not (cf.edge.server_port in {80 443})) will block all requests to all non-standard ports, but you cannot close them.
If you are subject to PCI DSS or similar audits, your auditor should understand that any risk has been mitigated.
5 Likes
Can you tell me for which reason Cloudflare uses the above ports?
They are common alternate ports for HTTP and HTTPS services.
2 Likes
As @i40west said they are common ports and Cloudflare offers HTTP/S on a lot of ports. You can find the full list here:
1 Like
This topic was automatically closed 3 days after the last reply. New replies are no longer allowed.