NETWORK PORTS
A port is a virtual point where network connections start and end. Ports are software-based and managed by the computer's operating system. Each port is associated with a specific process or service and assigned a number. Show below is a list of commonly used ports, accompanied by the process that uses it.
01
Well-Known Ports (0 - 1023)
These ports are used by system processes that provide various types of network services and must execute with root privileges to be able to bind a network socket to an IP address.
| PORT | SERVICE | PROTOCOL | DESCRIPTION |
|---|---|---|---|
| 7 | Echo | TCP, UDP | Echo service |
| 20, 21 | FTP | TCP, UDP, SCTP | File Transfer Protocol data transfer |
| 22 | SSH | TCP, UDP, SCTP | Secure Shell, secure logins, file transfers(scp, sftp) and port forwarding |
| 23 | Telnet | TCP | Telnet protocol, for unencrypted text communications |
| 25 | SMTP | TCP | Simple Mail Transfer Protocol, used for email routing between mail servers |
| 43 | WHOIS | TCP, UDP | Whois service, provides domain-level information |
| 53 | DNS | TCP, UDP | Domain Name System name resolver |
| 67 | DHCP/BOOTP | UDP | Dynamic Host Configuration Protocol and its predecessor Bootstrap Protocol Server; server port |
| 68 | DHCP/BOOTP | UDP | Dynamic Host Configuration Protocol and its predecessor Bootstrap Protocol Server; client port |
| 69 | TFTP | UDP | Trivial File Transfer Protocol |
| 70 | Gopher | TCP | Communication protocol for distributing, searching, and retrieving documents in Internet Protocol (IP) networks |
| 80 | HTTP | TCP, UDP, SCTP | Hypertext Transfer Protocol (HTTP) uses TCP in versions 1.x and 2. HTTP/3 uses QUIC, a transport protocol on top of UDP |
| 88 | Kerberos | TCP, UDP | Network authentication system |
| 110 | POP3 | TCP | Post Office Protocol, version 3 (POP3) |
| 123 | NTP | UDP | Network Time Protocol |
| 137 | NetBIOS | TCP, UDP | NetBIOS Name Service, used for name registration and resolution |
| 143 | IMAP | TCP, UDP | Internet Message Access Protocol (IMAP), management of electronic mail messages on a server |
| 161 | SNMP | UDP | Simple network management protocol; agents communicate on this port |
| 179 | BGP | TCP | Border Gateway Protocol |
| 194 | IRC | UDP | Internet Relay Chat |
| 264 | BGMP | TCP, UDP | Border Gateway Multicast Protocol |
| 389 | LDAP | TCP, UDP | Lightweight directory access protocol |
| 427 | SLP | TCP | Service Location Protocol |
| 443 | HTTPS | TCP, UDP, SCTP | Hypertext Transfer Protocol Secure (HTTPS) uses TCP in versions 1.x and 2. HTTP/3 uses QUIC, a transport protocol on top of UDP. |
| 464 | Kerberos password settings | TCP, UDP | For password settings on Kerberos |
| 465 | SMTP over TLS | TCP | Authenticated SMTP over TLS/SSL (SMTPS), URL Rendezvous Directory for Cisco’s Source Specific Multicast protocol (SSM) |
| 513 | rlogin | TCP | The Unix program rlogin allows users to log in on another host using a network. |
| 514 | syslog | UDP | Syslog Protocol, for collecting and organizing all of the log files sent from the various devices on a network |
| 520 | RIP | TCP | Routing Information Protocol, used to find the optimal path between source and destination networks |
| 547 | DHCPv6 | TCP, UDP | DHCPv6 Servers and DHCPv6 Relay Agents listen for DHCPv6 messages on UDP port 547. |
| 554 | RTSP | TCP, UDP | Real Time Streaming Protocol |
| 587 | SMTP | TCP | For email message submission via SMTP |
| 596 | SMSD | TCP, UDP | SysMan Station daemon |
| 636 | LSAP over SSL | TCP, UDP | Lightweight Directory Access Protocol over TLS/SSL |
| 873 | rsync | TCP | The rsync file synchronization protocol efficiently transfers and synchronizes files between devices and networked computers. |
| 993 | IMAP over SSL | TCP | Internet Message Access Protocol over TLS/SSL |
| 995 | POP3 over SSL | TCP, UDP | Post Office Protocol 3 over TLS/SSL |
02
Registered Ports (1024 - 49151)
These ports are assigned by IANA for a specific service. In most systems, registered ports can be used without superuser privileges.
| PORT | SERVICE | PROTOCOL | DESCRIPTION |
|---|---|---|---|
| 1025 | Microsoft RPC | TCP | Microsoft Remote Procedure Call |
| 1080 | SOCKS proxy | TCP, UDP | SOCKS stands for Socket Secure. This protocol exchanges network packets between a client and server through a proxy server. |
| 1194 | OpenVPN | TCP, UDP | OpenVPN |
| 1214 | KAZAA | TCP | A peer-to-peer file-sharing protocol |
| 1241 | Nessus | TCP, UDP | Nessus Security Scanner |
| 1337 | WASTE | TCP | WASTE peer-to-peer encrypted file-sharing Program |
| 1720 | H.323 | TCP | H.323 Call Control Signaling, a VoIP call control protocol |
| 1900 | UPnP | UDP | Universal Plug and Play |
| 2082 | cPanel | TCP, UDP | cPanel default |
| 2222 | DirectAdmin | TCP | Graphical web hosting control panel |
| 2483 | Oracle | TCP, UDP | Oracle database listening for insecure client connections to the listener, replaces port 1521 |
| 3127 | MyDoom | TCP | Computer worm |
| 3128 | HTTP Proxy | TCP | Common web proxy server ports: 80, 8080, 3128, 6588 |
| 3306 | MySQL | TCP | MySQL database system |
| 3389 | RDP | TCP | Windows Remote Desktop Protocol (Microsoft Terminal Server) |
| 4664 | Google Desktop | TCP | Google Desktops built-in HTTP server and indexing software |
| 4899 | Radmin | TCP | Remote computer control software |
| 5000 | UPnP | TCP | Universal Plug and Play |
| 5004-5005 | RTP, RTSP | UDP | Real-time Transport Protocol, Real Time Streaming Protocol |
| 5050 | Yahoo Messenger | TCP | Instant messaging service from Yahoo |
| 5060 | SIP | TCP, UDP | Session Initiation Protocol |
| 5061 | SIP over TLS | TCP | Session Initiation Protocol over TLS |
| 5222-5223 | XMPP | TCP, UDP | Extensible Messaging and Presence Protocol Client Connection; also used in Google Talk, Jabber, Apple iChat, WhatsApp, etc. |
| 5353 | MDNS | UDP | Multicast DNS |
| 5432 | PostgreSQL | TCP | PostgreSQL database system |
| 6379 | Redis | TCP | Popular non-relational database management system (NoSql) |
| 6566 | SANE | TCP, UDP | Scanner Access Now Easy |
| 6588 | HTTP Proxy | TCP | Common web proxy server ports: 80, 8080, 3128, 6588 |
| 6665-6669 | IRC | TCP | Internet Relay Chat |
| 6679, 6697 | IRC over SSL | TCP | Internet Relay Chat |
| 6881-6999 | BitTorrent | TCP, UDP | BitTorrent uses this range of ports the most often |
| 6891-6901 | Windows Live Messenger | TCP, UDP | Alternatively: MSN Messenger |
| 6970 | Quicktime | TCP, UDP | QuickTime streaming server |
| 8000 | Internet Radio | TCP | Commonly choice of alternate HTTP port for web applications |
| 8080 | HTTP Proxy | TCP | Common web proxy server ports: 80, 8080, 3128, 6588 |
| 33434+ | traceroute | UDP | Utility for displaying paths and measuring transit delays of packets across a network |
03
Dynamic Ports (49152 - 65535)
This range contains dynamic or private ports that cannot be registed with IANA. This range is used for private or customized services, for temporary purposes and for automatic allocation of ephemeral ports.
These ports are available for custom applications free from concerns that it may clash with existing processes.
04
Most Common Ports
The following ports are used by common software which uses protocols to connect and transfer data with other devices on the network. Memorizing which port each of these services uses would be very difficult, but if you would like to memorize the most common, we would suggest the following.
| PORT | SERVICE | PROTOCOL | DESCRIPTION |
|---|---|---|---|
| 7 | Echo | TCP, UDP | Echo service |
| 20, 21 | FTP | TCP, UDP, script | File Transfer Protocol data transfer |
| 22 | SSH | TCP, UDP, SCTP | Secure Shell, secure logins, file transfers(scp, sftp) and port forwarding |
| 23 | Telnet | TCP | Telnet protocol, for unencrypted text communications |
| 25 | SMTP | TCP | Simple Mail Transfer Protocol, used for email routing between mail servers |
| 53 | DNS | TCP, UDP | Domain Name System name resolver |
| 67, 68 | DHCP/BOOTP | UDP | Dynamic Host Configuration Protocol and its predecessor Bootstrap Protocol Server; server port / client port |
| 69 | TFTP | UDP | Trivial File Transfer Protocol |
| 80 | HTTP | TCP, UDP, SCTP | Hypertext Transfer Protocol (HTTP) uses TCP in versions 1.x and 2. HTTP/3 uses QUIC, a transport protocol on top of UDP |
| 88 | Kerberos | TCP, UDP | Network authentication system |
| 110 | POP3 | TCP | Post Office Protocol, version 3 (POP3) |
| 123 | NTP | UDP | Network Time Protocol |
| 137 | NetBIOS | TCP, UDP | NetBIOS Name Service, used for name registration and resolution |
| 143 | IMAP | TCP, UDP | Internet Message Access Protocol (IMAP), management of electronic mail messages on a server |
| 161 | SNMP | UDP | Simple network management protocol; agents communicate on this port |
| 194 | IRC | UDP | Internet Relay Chat |
| 389 | LDAP | TCP, UDP | Lightweight directory access protocol |
| 443 | HTTPS | TCP, UDP, SCTP | Hypertext Transfer Protocol Secure (HTTPS) uses TCP in versions 1.x and 2. HTTP/3 uses QUIC, a transport protocol on top of UDP. |
| 464 | Kerberos password settings | TCP, UDP | For password settings on Kerberos |
| 547 | DHCPv6 | TCP, UDP | DHCPv6 Servers and DHCPv6 Relay Agents listen for DHCPv6 messages on UDP port 547 |
| 596 | SMSD | TCP, UDP | SysMan Station daemon |
| 636 | LSAP over SSL | TCP, UDP | Lightweight Directory Access Protocol over TLS/SSL |
| 1720 | H.323 | TCP | H.323 Call Control Signaling, a VoIP call control protocol |
| 3389 | RDP | TCP | Windows Remote Desktop Protocol (Microsoft Terminal Server) |
| 5060 | SIP | TCP, UDP | Session Initiation Protocol |
| 5061 | SIP over TLS | TCP | Session Initiation Protocol over TLS |