You are on page 1of 35

Port Knowledgebase List of frequently seen TCP and UDP ports and what they mean.

The goal of this port table is to point to further resources for more inf tcpmux

0 1 3 4 5 7 9 11 13 15 17 18 19 20 21 22 23 25 27 29 31 33 37 38 39 40 41 42 43 49 50 53 57 59 63 66 67 68 69 70 79 80 87 88 95 96 98 101 102 105 106 109 110 111 113 115 116 117 118 119 120 123 124 129 133 135 137 138 139 143 144 150

rje echo discard systat daytime netstat qotd send/rwp chargen ftp-data ftp ssh, pcAnywhere Telnet SMTP ETRN msg-icp msg-auth dsp time RAP rlp

nameserv, WINS whois, nickname TACACS, Login Host Protocol RMCP, re-mail-ck DNS MTP NFILE whois++ sql*net bootps bootpd/dhcp Trivial File Transfer Protocol (tftp) Gopher finger www-http Kerberos, WWW supdup DIXIE linuxconf HOSTNAME ISO, X.400, ITOT cso poppassd POP2 POP3 Sun RPC Portmapper identd/auth sftp uucp NNTP CFDP NTP SecureID PWDGEN statsrv loc-srv/epmap netbios-ns netbios-dgm (UDP) NetBIOS IMAP NewS

152 153 156 161 175 177 178 179 180 199 210 213 218 220 256 257 258 259 264 311 350 351 360 363 366 371 387 389 407 427 434 443 444 445 458 468 475 500 511 512 513 514 515 517 520 521 522 531 543 545 548 554 555 563 575 581 593 608 626 631 635 636 642 648 655 660 666 674 687 700 705 901 993 995 999

BFTP SGMP SNMP vmnet XDMCP NextStep Window Server BGP SLmail admin smux Z39.50 MPP IMAP3

ESRO FW1_topo Apple WebAdmin MATIP type A MATIP type B RSVP tunnel ODMR (On-Demand Mail Relay)

AURP (AppleTalk Update-Based Routing Protocol) LDAP Timbuktu Mobile IP ssl snpp, Simple Network Paging Protocol SMB QuickTime TV/Conferencing Photuris ISAKMP, pluto biff, rexec who, rlogin syslog, rsh lp, lpr, line printer talk RIP (Routing Information Protocol) RIPng ULS IRC KLogin, AppleShare over IP QuickTime AFP Real Time Streaming Protocol phAse Zero NNTP over SSL VEMMI Bundle Discovery Protocol MS-RPC SIFT/UFT Apple ASIA IPP (Internet Printing Protocol) mountd sldap EMSD RRP (NSI Registry Registrar Protocol) tinc Apple MacOS Server Admin Doom ACAP AppleShare IP Registry buddyphone AgentX for SNMP swat, realsecure s-imap s-pop

1024 1025 1050 1062 1080 1085 1100 1105 1114 1227 1234 1243 1338 1352 1381 1417 1418 1419 1420 1433 1434 1477 1478 1490 1494 1498 1500 1503 1521 1522 1524 1525 1526 1527 1529 1547 1604 1645 1646 1680 1701 1717 1720 1723 1731 1755 1758 1761 1762 1808 1812 1813 1818 1968 1973 1975 1978 1979 1985 1999 2000 2001 2005 2010 2023 2048 2049 2064 2065 2066 2080 2106 2140 2301 2327

Veracity SOCKS WebObjects

DNS2Go SubSeven Millennium Worm Lotus Notes Apple Network License Manager Timbuktu Timbuktu Timbuktu Microsoft SQL Server Microsoft SQL Monitor

Citrix ICA Protocol

T.120 Oracle SQL

prospero prospero tlisrv

Citrix ICA, MS Terminal Server RADIUS Authentication RADIUS Accounting Carbon Copy L2TP/LSF Convoy H.323/Q.931 PPTP control port Windows Media .asf TFTP multicast

RADIUS server RADIUS accounting ETFTP DLSw DCAP/DRAP

HSRP Cisco AUTH glimpse

NFS distributed.net DLSw DLSw

MZAP DeepThroat Compaq Insight Management Web Agents Netscape Conference

2336 2345 2427 2504 2535 2543 2565 2592 2727 2766 2628 2998 3000 3001 3031 3052 3128 3130 3150 3264 3283 3288 3305 3306 3352 3389 3520 3521 3879 4000 4045 4144 4242 4321 4333 4444 47017 4827 5000 5001 5002 5004 5005 5010 5050 5060 5135 5150 5190 5222 5353 5400 5500 5501 5300 5423 5555 5556 5631 5632 5678 5800 5801 5900 5901 5843 6000 6112 6050 6499 6500 6502 6547 6548 6549

Apple UG Control MGCP gateway WLBS MADCAP sip netrek MGCP call agent

DICT ISS Real Secure Console Service Port Firstclass Apple AgentVU squid ICP DeepThroat ccmail Apple NetAssitant COPS ODETTE mySQL RDP Protocol (Terminal Server) netrek icq, command-n-conquer

rwhois mSQL

HTCP

RTP RTP Yahoo! Messenger SIP

AIM

securid securidprop Apple VirtualUser

PCAnywhere data PCAnywhere VNC VNC VNC VNC X Windows BattleNet

Netscape Conference

6666 6667 6670 6699 6776 6968 6969 6970 6971 7000 7007 7070 7161 7323 7777 7778 7640 7648 7649 7654 8000 8002 8010 8080 8100 8181 8383 8765 8875 8888 8890 9000 9090 9200 9704 9669 9876 9989 10008 10752 12345 11371 12346 13000 13223 13224 14000 14237 14238 14690 16969 18888 21157 22555 22703 22793 23213 23214 23456 26000 27000 27001 27010 27015 27374 27444 27665 27910 27960 28000 28001 28002 28003 28004 28005

IRC VocalTec Internet Phone, DeepThroat napster Sub7

RTP

MSBD, Windows Media encoder RealServer/QuickTime

Unreal CU-SeeMe CU-SeeMe

WinGate 2.1 HTTP HTTP IMail WWW napster napster

cheese worm

PGP 5 Keyserver

PowWow PowWow Palm Palm

LiquidAudio Activision

PowWow PowWow EvilFTP Quake QuakeWorld Half-Life Half-Life

QuakeIII

28006 28007 28008 30029 AOL Admin 30100 30101 30102 30103 30303 30464 31335 31337 Back Orifice 32000 32771 32777 rpc.walld 34555 40193 Novell 41524 arcserve discovery 45000 Cisco NetRanger postofficed 50505 52901 54321 61000 65301 Multicast hidden ICMP Type hidden 9998 32773 rpc.ttdbserverd 32776 rpc.spray 32779 rpc.cmsd 38036 timestep

Commonly Used Port Numbers CPANEL cPanel cPanel - SSL WHM WHM - SSL Webmail Webmail - SSL E-MAIL POP3 POP3 - SSL IMAP IMAP - SSL SMTP SMTP Alternate SMTP Alternate SMTP - SSL WEB HTTP SSL FTP FTPs SFTP SFTP Shared/Reseller Servers Webdisk Webdisk - SSL MySQL MSSQL SSH SSH Shared/Reseller Servers OTHER Plesk Control Panel Plesk Control Panel - SSL Plesk Windows Webmail Plesk Windows SmarterMail Plesk Windows SmarterMail - Insecu Virtuozzo DotNet Panel DotNet Panel Login 8880 8443 8425 8429 9998 4643 9001 80 80 443 21 990 22 2222 2077 2078 3306 1433 22 2222 110 995 143 993 25 26 587 465 2082 2083 2086 2087 2095 2096

Well-Known TCP Port Numbers


Port Number Description 1 TCP Port Service Multiplexer (TCPMUX) 5 Remote Job Entry (RJE) 7 ECHO 18 Message Send Protocol (MSP) 20 FTP -- Data 21 FTP -- Control 22 SSH Remote Login Protocol 23 Telnet 25 Simple Mail Transfer Protocol (SMTP) 29 MSG ICP 37 Time 42 Host Name Server (Nameserv) 43 WhoIs 49 Login Host Protocol (Login) 53 Domain Name System (DNS) 69 Trivial File Transfer Protocol (TFTP) 70 Gopher Services 79 Finger 80 HTTP 103 X.400 Standard 108 SNA Gateway Access Server 109 POP2 110 POP3 115 Simple File Transfer Protocol (SFTP) 118 SQL Services 119 Newsgroup (NNTP) 137 NetBIOS Name Service 139 NetBIOS Datagram Service 143 Interim Mail Access Protocol (IMAP) 150 NetBIOS Session Service 156 SQL Server 161 SNMP 179 Border Gateway Protocol (BGP) 190 Gateway Access Control Protocol (GACP) 194 Internet Relay Chat (IRC) 197 Directory Location Service (DLS) 389 Lightweight Directory Access Protocol (LDAP) 396 Novell Netware over IP 443 HTTPS 444 Simple Network Paging Protocol (SNPP) 445 Microsoft-DS 458 Apple QuickTime 546 DHCP Client 547 DHCP Server 563 SNEWS 569 MSN 1080 Socks

TCP Port Numbers Commonly Used on the Macintosh

UDP Port Numbers Commonly Used on the Macintosh

21 File Transfer Protocol (FTP) 22 Remote Login (ssh) 23 Telnet 25 Simple Mail Transfer Protocol (SMTP) 42 Windows Internet Naming Service (WINS) 80 Personal Web Sharing (HTTP) 88 Kerberos 110 Post Office Protocol (POP) 111 Remote Procedure Call (RPC) 113 Authentication (AUTH) 119 Network News Transfer Protocol (NNTP) 135 RPC endpoint mapper 137 Windows Name Service 139 Windows Sharing (SMB) 143 Internet Message Access Protocol (IMAP) 192 AirPort Admin 311 Mac OS X Server Admin 389 Lightweight Directory Access Protocol (LDAP) 407 Timbuktu 427 Service Location Protocol (SLP) 443 Secure Sockets Layer (SSL) 445 Windows Sharing (SMB) 497 Retrospect Backup 510 First Class Server 515 Line Printer Daemon Protocol (LPR) 548 Personal File Sharing (AFP) 554 RTSP (QuickTime) 587 Alternate SMTP 591 FileMaker Web Companion 625 Parental Controls, Mac OS X Server 631 Printer Sharing (IPP) 660 Mac OS X Server Admin 687 Mac OS X Server Monitor 1080 "WebSTAR Admin, others" 1214 KaZaA sharing 1220 QuickTime Streaming Server Admin 1231 QuickDNS Central 1337 QuickDNS Remote 1417-1419 Timbuktu (old versions) 2190 TiVo Desktop 3031 Remote Apple Events 3167-3168 Now Up-to-date Server 3283 Apple Remote Desktop (reporting) 3306 MySQL 3659 Mac OS X Server 3689 iTunes Music Sharing (DAAP) 4111 Xgrid 4199 EIMS Admin 4347 Neon Responder

53 67-68 88 123 138 161 626 2049 2222 3283 4500 5060 5297 5353 6970-6999 16384-16403

Domain Name System (DNS) Dynamic Host Configuration Protocol (DHCP) Kerberos Date & Time (NTP) Windows Datagram Service Simple Network Management Protocol (SNMP) Mac OS X Server Serial Number Network File Server (NFS) Microsoft Office Apple Remote Desktop Back to My Mac iChat (SIP) iChat/Bonjour Bonjour (Rendezvous) QuickTime iChat a/v and screen sharing

5003 FileMaker Pro 5009 AirPort Admin 5100 Camera/Scanner Sharing 5190 AOL Instant Messenger 5222-5223 Jabber Instant Messaging 5298 iChat/Bonjour 5631 PCanywhere 5500 Virtual Network Computing (VNC) 5800 VNC 5900 Screen Sharing, Apple Remote Desktop & VNC 5901 VNC 5988 Apple Remote Desktop (WBEM) 6346 Gnutella/LimeWire sharing 6667 Internet Relay Chat (IRC) 6699 Napster (original) 6881-6889 BitTorrent sharing 6942-6951 SubEthaEdit 7070 RTSP (QuickTime) 8101 TiVo Desktop 8770 iPhoto Photo Sharing (DPAP) 14237 Palm HotSync 14566 4D Server 16080 Mac OS X Web Server 50003 FileMaker 7 Server 50006 FileMaker 7 Helper Server 59278 EyeFi

Port 7 20 21 22 23 25 53 67 68 69 79 80 88 106 110 111 113 115 119 123 137 138 139 143 161 192 311 389 427 443 445 464 497 500 514 514 515 532 548 554 587 600-1023 623 625 626 626 631 636

TCP or UDP Service or Protocol Name TCP/UDP TCP TCP TCP TCP TCP TCP/UDP UDP UDP UDP TCP TCP TCP TCP TCP TCP/UDP TCP TCP TCP TCP/UDP UDP UDP TCP TCP UDP UDP TCP TCP TCP/UDP TCP TCP TCP/UDP TCP/UDP UDP TCP UDP TCP TCP TCP TCP/UDP TCP TCP/UDP UDP TCP TCP UDP TCP TCP echo File Transport Protocol (FTP) FTP control Secure Shell (SSH) Telnet Simple Mail Transfer Protocol (SMTP) Domain Name System (DNS) Bootstrap Protocol Server (BootP, bootps) Bootstrap Protocol Client (bootpc) Trivial File Transfer Protocol (TFTP) Finger Hypertext Transfer Protocol (HTTP) Kerberos Password Server (Unregistered Use) Post Office Protocol (POP3) Authenticated Post Office Protocol (APOP) Remote Procedure Call (RPC) Identification Protocol Secure File Transfer Program (SFTP) Network News Transfer Protocol (NNTP) Network Time Protocol (NTP) Windows Internet Naming Service (WINS) NETBIOS Datagram Service Server Message Block (SMB) Internet Message Access Protocol (IMAP) Simple Network Management Protocol (SNMP) OSU Network Monitoring System Secure server administration Lightweight Directory Access Protocol (LDAP) Service Location Protocol (SLP) Secure Sockets Layer (SSL, or "HTTPS") Microsoft SMB Domain Server kpasswd Dantz Retrospect ISAKMP/IKE shell Syslog Line Printer (LPR), Line Printer Daemon (LPD) netnews Apple Filing Protocol (AFP) over TCP Real Time Streaming Protocol (RTSP) Message Submission for Mail (Authenticated SMTP) Mac OS X RPC-based services Lights-Out-Monitoring Directory Service Proxy (DSProxy) (Unregistered Use) AppleShare Imap Admin (ASIA) serialnumberd (Unregistered Use) Internet Printing Protocol (IPP) Secure LDAP

RFC 792 959 959

4250 - 425 854 5321 1034 951 951 1350 1288 2616 4120 1939

1057, 1831 1413 913 3977 1305 3501 1157 4511 2608 2818 3244 2326 4409 2910 -

660 687 749 985 993 995 1085 1099 & 8043 1220 1640 1649 1701 1723 2049 2195 2196 2336 3004 3031 3283 3306 3478-3497 3632 3659 3689 4111 4398 4488 4500 5003 5009 5060 5100 5190 5222 5223 5269 5297 5298 5353 5354 5432 5678 5897-5898 5900 5988 6970-9999 7070

TCP TCP TCP/UDP TCP TCP TCP/UDP TCP/UDP TCP TCP TCP TCP UDP TCP TCP/UDP TCP TCP TCP TCP TCP/UDP TCP/UDP TCP UDP TCP TCP/UDP TCP TCP UDP TCP/UDP UDP TCP TCP UDP TCP TCP/UDP TCP TCP TCP TCP TCP/UDP UDP TCP TCP UDP UDP TCP TCP UDP TCP

MacOS Server Admin Server administration Kerberos 5 admin/changepw NetInfo Static Port Mail IMAP SSL Mail POP SSL WebObjects Remote RMI and IIOP Acess to JBOSS QT Server Admin Certificate Enrollment Server IP Failover L2TP PPTP Network File System (NFS) (version 3 and 4) Apple Push Notification Service (APNS) Apple Push Notification Service (APNS) Mobile account sync iSync Remote AppleEvents Net Assistant MySQL Distributed compiler Simple Authentication and Security Layer (SASL) Digital Audio Access Protocol (DAAP) XGrid Apple Wide Area Connectivity Service IKE NAT Traversal FileMaker - name binding and transport (Unregistered Use) Session Initiation Protocol (SIP) America Online (AOL) XMPP (Jabber) XMPP over SSL, Apple Push Notification Service XMPP server-to-server communication Multicast DNS (MDNS) Multicast DNS Responder PostgreSQL SNATMAP server (Unregistered Use) Virtual Network Computing (VNC) (Unregistered Use) WBEM HTTP RTSP (Unregistered Use) Automatic Router Configuration Protocol (ARCP - Registered Use)

1094 3261 3920 3920 3927 -

7070 7777 8000-8999 8005 8008 8080 8085-8087 8088 8089 8096 8170 8171 8175 8443 8800 8843 8821, 8826 8891 9006, 8080, 8443 11211 16080 16384-16403 16384-16387 16393-16402 16403-16472 24000-24999 42000-42999 49152-65535 50003 50006

UDP TCP TCP TCP TCP TCP TCP TCP TCP TCP TCP TCP TCP TCP TCP TCP TCP TCP TCP UDP UDP UDP UDP TCP TCP TCP -

RTSP alternate iChat server file transfer proxy (unregistered use) Tomcat remote shutdown iCal service Alternate port for Apache web service Wiki service Software Update service Web email rules Web Password Reset HTTPS (web service/site) HTTP (web service/site) Pcast Tunnel iCal service (SSL) Address Book service Address Book service (SSL) Stored ldsd HTTP and HTTPS ports for Tomcat Standalone and JBOSS (J2EE) memcached (unregistered) Real-Time Transport Protocol (RTP), Real-Time Control Protocol (RTCP) Real-Time Transport Protocol (RTP), Real-Time Control Protocol (RTCP) Real-Time Transport Protocol (RTP), Real-Time Control Protocol (RTCP) Real-Time Transport Protocol (RTP), Real-Time Control Protocol (RTCP) Xsan FileMaker server service FileMaker helper service

Notes 1. Not all ports and services listed are present in or used by all software products. Some applications, such as Workgroup Manager, require more than one p 2. Network administrators may wish to use port-watching software in addition to this information when making decisions about how to set up firewalls or si 3. For an explanation of what a TCP or UDP port is, see the "IP Ports" section of "Mac OS X: What Is a Port?" 4. In Mac OS X Server v10.0.3 and later, some services that do not use well-known ports register with portmap. Use therpcinfo -pcommand in Terminal to se 5. The NetInfo parent-child model has replaced Shared Users and Groups in Mac OS X Server 10.0.3 and later. 6. With performance cache enabled in Mac OS X Server v10.0.3 and later, Apache is on port 16080 and cache is on port 80. 7. This table includes features and ports used by Mac OS X v10.3. Earlier versions of Mac OS X do not have all the features listed here. 8. For Mac OS X Server v10.3 VPN service: PPTP uses the IP-GRE protocol (IP protocol 47). L2TP/IPsec uses the IP-ESP protocol (IP protocol 50, ESP). 9. This is for current Jabber authentication methods. The previous method also requires port 5223. 10. servermgrd only listens on this port in Mac OS X v10.3.9 and earlier. With Mac OS X v10.4 or later, it listens on 311 only. 11. The output of Terminal commands may replace the port number with the label that is listed in /etc/services. Please refer to the /etc/services column in t

/etc/services echo ftp-data ftp ssh telnet smtp domain bootps bootpc tftp finger http kerberos 3com-tsmux pop3 sunrpc ident sftp nntp ntp netbios-ns netbios-dgm netbios-ssn imap snmp osu-nms asip-webadmin ldap svrloc https microsoft-ds kpasswd dantz isakmp shell syslog printer netnews afpovertcp rtsp submission ipcserver asf-rmcp dec_dlm asia asia ipp ldaps

mac-srvr-admin asipregistry kerberos-adm imaps pop3s webobjects rmiregistry qt-serveradmin cert-responder kermit l2f pptp nfsd appleugcontrol csoftragent eppc net-assistant

mysql nat-stun-port - ipether232p distcc apple-sasl daap xgrid awacs-ice ipsec-msft fmpro-internal winfs sip socalia aol jabber-client jabber-server mdns mdnsresponder postgresql rrac vnc-server wbem-http arcp

arcp cbt irdmi http-alt http-alt radan-http pcsync-https sunwebadmin -, http-alt, pcsync-https connected, connected, med-ltp -

Used by / Additional information Mail (for sending email); MobileMe Mail (sending) MacDNS, FaceTime NetBoot via DHCP NetBoot via DHCP Mac OS X Server Password Server Mail (for receiving email) Portmap (sunrpc) Note: Some authorities reference a "Simple File Transport Protocol" or "Secured File Transport Protocol" on this port. Used by applications that read newsgroups. Date & Time preferences. Used for network time server synchronization, AppleTV Network Time Server Sync Windows Datagram Service, Windows Network Neighborhood Used by Microsoft Windows file and print services, such as Windows Sharing in Mac OS X. Mail (for receiving email); MobileMe Mail (IMAP) AirPort Base Station PPP status or discovery (certain configurations), AirPort Admin Utility, AirPort Express Assistant Server Admin, Workgroup Manager, Server Monitor, Xsan Admin Used by applications that look up addresses, such as Mail and Address Book. Network Browser Mac OS X Server VPN service, Back to My Mac (MobileMe, Mac OS X v10.5 or later). Used for printing to a network printer, Printer Sharing in Mac OS X. AppleShare, Personal File Sharing, Apple File Service QuickTime Streaming Server (QTSS), streaming media players, AirPlay Mail (for sending mail), MobileMe Mail (SMTP authentication) Used by NetInfo, for example. Used by Intel Xserves' Lights-Out-Monitoring (LOM) feature; used by Server Monitor DirectoryService, Open Directory Assistant, Workgroup Manager. Note: This port is registered to DEC DLM. IMAP Administration (Mac OS X Server 10.2.8 or earlier, AppleShare IP 6) Server serial number registration (Xsan, Mac OS X Server v10.3 - v10.6) Mac OS X Printer Sharing, Printing to many common printers -

World Wide Web, MobileMe, QuickTime Installer, iTunes Store and Radio, Software Update, RAID Admin, Backup, iCal calendar pub

TLS websites, iTunes Store, FaceTime, Game Center, MobileMe (authentication, iDisk, iDisk Sync, and MobileMe Sync), AirPlay, OS X

Server Admin (both AppleShare IP and Mac OS X Server), Server settings Server app, Server Admin, Workgroup Manager, Server Monitor, Xsan Admin MobileMe Mail (SSL IMAP) Used for administration of QuickTime Streaming Server. Profile Manager, SCEP Mac OS X Server VPN service Mac OS X Server VPN service Push notifications Feedback service Home directory synchronization Program Linking, Remote Apple Events Apple Remote Desktop 2.0 or later (Reporting feature) FaceTime, Game Center Mac OS X Server Password Server iTunes Music Sharing, AirPlay Game Center Back To My Mac Mac OS X Server VPN service, Back to My Mac (MobileMe, Mac OS X v10.5 or later). Note: VPN and MobileMe are mutually exclusive when configured through an Apple access point (such as an AirPort Base Station); AirPort Admin Utility, AirPort Express Assistant iChat Mac OS X camera and scanner sharing iChat and AOL Instant Messenger, file transfer iChat and Jabber messages MobileMe (Automatic sync notifications) (see note 9), APNs, FaceTime, Game Center iChat Server iChat (local traffic), Bonjour iChat (local traffic), Bonjour Bonjour (mDNSResponder), AirPlay, Home Sharing, Printer Discovery Back to My Mac May be enabled manually on Lion Server. Previously enabled by default for ARD 2.0 Database. xrdiags Apple Remote Desktop 2.0 or later (Observe/Control feature) Screen Sharing (Mac OS X 10.5 or later) Apple Remote Desktop 2.x (see http://www.dmtf.org/about/faq/wbem) QuickTime Streaming Server QuickTime Streaming Server (RTSP)

The SNATMAP service on port 5678 is used to determine the external Internet address of hosts so that connections between iChat u

QuickTime Streaming Server Web service, iTunes Radio streams Mac OS X Server v10.5 and later Mac OS X Server v10.5 and later Mac OS X Server v10.4 and later Mac OS X Server v10.6 and later Mac OS X Server v10.6.3 and later Podcast Capture/podcast CLI Podcast Capture/podcast CLI pcastagentd (for control operations, camera and so on) Mac OS X Server v10.5 and later Mac OS X Server v10.6 and later Mac OS X Server v10.6 and later Final Cut Server Final Cut Server (data transfers) iCal Server Web service with performance cache iChat AV (Audio RTP, RTCP; Video RTP, RTCP) FaceTime, Game Center FaceTime, Game Center Game Center Web service with performance cache iTunes Radio streams Xsan Filesystem Access -

Port Assignments for Commonly-Used Services Table C.3 Default Port Assignments for Common Services Service Name Browsing datagram responses of NetBIOS over TCP/IP Browsing requests of NetBIOS over TCP/IP Client/Server Communication Common Internet File System (CIFS) Content Replication Service Cybercash Administration Cybercash Coin Gateway Cybercash Credit Gateway DCOM (SCM uses udp/tcp to dynamically assign ports for DCOM) DHCP client DHCP server DHCP Manager DNS Administration DNS client to server lookup (varies) Exchange Server 5.0 Client Server Communication Exchange Administrator IMAP IMAP (SSL) LDAP LDAP (SSL) MTA - X.400 over TCP/IP POP3 POP3 (SSL) RPC SMTP NNTP NNTP (SSL) File shares name lookup File shares session FTP FTP-data HTTP HTTP-Secure Sockets Layer (SSL) Internet Information Services (IIS) IMAP IMAP (SSL) IKE (For more information, see Table C.4) IPSec Authentication Header (AH) (For more information, see Table C.4) IPSec Encapsulation Security Payload (ESP) (For more information, see Table C.4) IRC ISPMOD (SBS 2nd tier DNS registration wizard) Kerberos de-multiplexer Kerberos klogin Kerberos kpasswd (v5) Kerberos krb5 Kerberos kshell L2TP LDAP LDAP (SSL) Login Sequence Macintosh, File Services (AFP/IP) Membership DPA Membership MSN Microsoft Chat client to server Microsoft Chat server to server Microsoft Message Queue Server Microsoft Message Queue Server Microsoft Message Queue Server MTA - X.400 over TCP/IP NetBT datagrams NetBT name lookups NetBT service sessions NetLogon NetMeeting Audio Call Control NetMeeting H.323 call setup NetMeeting H.323 streaming RTP over UDP NetMeeting Internet Locator Server ILS NetMeeting RTP audio stream NetMeeting T.120 NetMeeting User Location Service NetMeeting user location service ULS

Network Load Balancing NNTP NNTP (SSL) Outlook (see for ports) Pass Through Verification POP3 POP3 (SSL) PPTP control PPTP data (see Table C.4) Printer sharing name lookup Printer sharing session Radius accounting (Routing and Remote Access) Radius authentication (Routing and Remote Access) Remote Install TFTP RPC client fixed port session queries RPC client using a fixed port session replication RPC session ports RPC user manager, service manager, port mapper SCM used by DCOM SMTP SNMP SNMP Trap SQL Named Pipes encryption over other protocols name lookup SQL RPC encryption over other protocols name lookup SQL session SQL session SQL session SQL session mapper SQL TCP client name lookup Telnet Terminal Server UNIX Printing WINS Manager WINS NetBios over TCP/IP name service WINS Proxy WINS Registration WINS Replication X400

There are many services associated with the Windows 2000 operating system. These services might require more than one TCP or UDP port for the service to be fu

UDP 138 137 445

TCP

135

53

135 139, 445 560 8001 8002 8000 135 67 68 135 139 53 135 135 143 993 389 636 102 110 995 135 25 119 563

137 139 21 20 80 443 80 143 993 500

464 88 1701

531 1234 2053 543 464 88 544 389 636 139 548 568 569 6667 6665 1801 135, 2101 2103, 2105 102

137, 138

1801 3527

138 137 139 138 1731 1720 Dynamic 389 Dynamic 1503 522 522

2504 119 563 137, 138 139 110 995 1723

137 139 1646 or 1813 1645 or 1812 69 1500 2500 Dynamic 135 135 25

135 161 162 137 137

53

139 1433 1024 - 5000 135 53 23 3389 515 135

137 137 137 42 102