Sunday, December 30, 2007
show application port on linux
LINUX的端口和服务一直都是大家关心的问题,弄不好会出大问题的:)
LINUX的端口和服务
一、端口和服务的关系
端口号与相应服务的对应关系存放在/etc/services文件中,这个文件中可以找到大部分端口。使用netstat命令
显示的服务名称也是从这个文件中找的。有人说将这个文件中的相应端口号注释掉,就可以禁用该端口。
我试了却不起作用,这种方法应该是没有用的,是误传!将相应端口号注释掉,唯一的作用就是使用netsat
命令时,将不显示服务名(比如ftp)而是显示端口号(比如21)。原理也很简单:netstat无法在/etc/services
文件中找到端口号对应的服务名,自然就无法显示了。所以/etc/services文件只是起到端口号与相应服务的
映射关系,与端口的启动和关闭没有关系!
二、查看本机开放的端口
1、netstat 查看端口和连接
netstat 列出目前已经连接的服务名
netstat -a 列出目前已经连接的和正在监听的服务名
netstat -an 列出目前已经连接的和正在监听的端口号(与上面的命令功能一样,只是不解释端口号对应的服务名)
netstat -ap 在上面命令的基础上列出连接的PID(进程号),用这个PID,可以使用KILL 来杀死连接
例如:某个连接的PID=111,想踢出去就使用 KILL -9 111。ok!
netstat -rn 输出路由表
2、nmap
nmap 127.0.0.1 查看本机开放的端口,会扫描所有端口
nmap -p 1024 65535 127.0.0.1 扫描指定端口范围
nmap -PT 192.168.1.1-111 扫描一组范围的电脑
三、关闭和开启端口(服务)
关闭端口的方法:
1、因为每个端口都有对应的服务,因此要关闭端口只要关闭相应的服务就可以了。
2、用IPTABLE对端口进行限制,这样也能使端口不被访问,但端口本身并没有关闭。
在这儿只介绍关闭服务的方法,IPTABLE的应用以后再讨论。
linux中开机自动启动的服务一般都存放在两个地方:
/etc/init.d/文件夹下的服务:
这个文件夹下的服务都可以通过运行相应的SCRIPT来启动或关闭。
例如:启动sendmail服务 ./sendmail start (打开了TCP 25端口)
关闭sendmail服务 ./sendmail stop (关闭TCP 25 端口)
查看sendmail服务当前状态 ./sendmail status (查看服务是否运行)
/etc/xinetd.d/文件夹下的服务:
这个文件夹下的服务需要通过更改服务的配置文件,并重新启动xinetd才可以。
例如:要启动其中的auth服务,打开/etc/xinetd.d/auth配置文件,更改"disable=no",保存退出。运行/etc/rc.d/init.d/xinetd restart
要停止其中的auth服务,打开/etc/xinetd.d/auth配置文件,更改"disable=yes",保存退出。运行/etc/rc.d/init.d/xinetd restart
四、控制开机自动启动的服务
上面说的控制服务开关方法是在启动linux之后进行操作的,如果我想在linux启动时控制哪些服务启动、哪些服务关闭怎么做?
控制服务自动启动的方法有3个:
1、更改/etc/rc.d下的对应文件夹:
如果你登陆的默认界面是字符界面,那么修改rc.3文件夹,如果登陆界面默认是图形界面,那么修改rc.5。
在文件夹中,每个服务的名字前都带有"K"或"S",S就代表这个服务开机自动运行了,把它删了或前缀改为"K"下次就不会启动了。
2、使用ntsysv命令:
输入ntsysv命令,将会出现一个服务列表,需要启动的打"*",简单。
3、使用chkconfig命令:
让某个服务不自动启动:例如httpd:chkconfig --level 35 httpd off ;35指的是运行级别
让某个服务自动启动:例如httpd:chkconfig --level 35 httpd on ;
查看所有服务的启动状态:chkconfig --list
查看某个服务的启动状态:chkconfig --list |grep httpd
端口和服务的操作就到这儿吧。
linux application port
Port lists
The tables below indicate a status with the following colors and tags:
- Official if the application and port combination is in the IANA list of port assignments ;
- Unofficial if the application and port combination is not in the IANA list of port assignments; and
- Conflict if the port is being used commonly for two applications or protocols.
- EPI if the port is being used as an Internal Standard.
[edit] Ports 0 to 1023
Only those ports that are commonly used are listed, refer to the IANA site for the full list.
Port | Description | status |
---|---|---|
0/TCP,UDP | Reserved; do not use (but is a permissible source port value if the sending process does not expect messages in response) | Official |
1/TCP,UDP | TCPMUX (TCP port service multiplexer) | Official |
5/TCP,UDP | RJE (Remote Job Entry) | Official |
7/TCP,UDP | ECHO protocol | Official |
9/TCP,UDP | DISCARD protocol | Official |
11/TCP,UDP | SYSTAT protocol | Official |
13/TCP,UDP | DAYTIME protocol | Official |
17/TCP,UDP | QOTD (Quote of the Day) protocol | Official |
18/TCP,UDP | Message Send Protocol | Official |
19/TCP,UDP | CHARGEN (Character Generator) protocol | Official |
20/TCP | FTP - data port | Official |
21/TCP | FTP - control (command) port | Official |
22/TCP,UDP | SSH (Secure Shell) - used for secure logins, file transfers ( scp, sftp) and port forwarding | Official |
23/TCP,UDP | Telnet protocol - unencrypted text communications | Official |
25/TCP,UDP | SMTP - used for e-mail routing between mailservers E-mails | Official |
26/TCP,UDP | RSFTP - A simple FTP-like protocol | Unofficial |
35/TCP,UDP | QMS Magicolor 2 printer | Unofficial |
37/TCP,UDP | TIME protocol | Official |
39/TCP,UDP | Resource Location Protocol | Official |
41/TCP,UDP | Graphics | Official |
42/TCP,UDP | Host Name Server | Official |
42/TCP,UDP | WINS | Unofficial |
43/TCP | WHOIS protocol | Official |
49/TCP,UDP | TACACS Login Host protocol | Official |
53/TCP,UDP | DNS (Domain Name System) | Official |
56/TCP,UDP | Route Access Protocol | Official |
57/TCP | MTP, Mail Transfer Protocol | |
67/UDP | BOOTP (BootStrap Protocol) server; also used by DHCP (Dynamic Host Configuration Protocol) | Official |
68/UDP | BOOTP client; also used by DHCP | Official |
69/UDP | TFTP (Trivial File Transfer Protocol) | Official |
70/TCP | Gopher protocol | Official |
79/TCP | Finger protocol | Official |
80/TCP | HTTP (HyperText Transfer Protocol) - used for transferring web pages | Official |
81/TCP | HTTP Alternate (HyperText Transfer Protocol) | Official |
81/TCP | Torpark - Onion routing ORport | Unofficial |
82/UDP | Torpark - Control Port | Unofficial |
88/TCP | Kerberos - authenticating agent | Official |
101/TCP | HOSTNAME | |
102/TCP | ISO-TSAP protocol | |
107/TCP | Remote Telnet Service | |
109/TCP | POP, Post Office Protocol, version 2 | |
110/TCP | POP3 (Post Office Protocol version 3) - used for retrieving E-mails | Official |
111/TCP,UDP | sun protocol | Official |
113/TCP | ident - old server identification system, still used by IRC servers to identify its users | Official |
115/TCP | SFTP, Simple File Transfer Protocol | |
117/TCP | UUCP-PATH | |
118/TCP,UDP | SQL Services | Official |
119/TCP | NNTP (Network News Transfer Protocol) - used for retrieving newsgroups messages | Official |
123/UDP | NTP (Network Time Protocol) - used for time synchronization | Official |
135/TCP,UDP | EPMAP (End Point Mapper) / Microsoft RPC Locator Service | Official |
137/TCP,UDP | NetBIOS NetBIOS Name Service | Official |
138/TCP,UDP | NetBIOS NetBIOS Datagram Service | Official |
139/TCP,UDP | NetBIOS NetBIOS Session Service | Official |
143/TCP,UDP | IMAP4 (Internet Message Access Protocol 4) - used for retrieving E-mails | Official |
152/TCP,UDP | BFTP, Background File Transfer Program | |
153/TCP,UDP | SGMP, Simple Gateway Monitoring Protocol | |
156/TCP,UDP | SQL Service | Official |
158/TCP,UDP | DMSP, Distributed Mail Service Protocol | |
161/TCP,UDP | SNMP (Simple Network Management Protocol) | Official |
162/TCP,UDP | SNMPTRAP | Official |
170/TCP | Print-srv | |
179/TCP | BGP (Border Gateway Protocol) | Official |
194/TCP | IRC (Internet Relay Chat) | Official |
201/TCP,UDP | AppleTalk Routing Maintenance | |
209/TCP,UDP | The Quick Mail Transfer Protocol | |
213/TCP,UDP | IPX | Official |
218/TCP,UDP | MPP, Message Posting Protocol | |
220/TCP,UDP | IMAP, Interactive Mail Access Protocol, version 3 | |
259/TCP,UDP | ESRO, Efficient Short Remote Operations | |
264/TCP,UDP | BGMP, Border Gateway Multicast Protocol | |
311/TCP | Apple Server-Admin-Tool, Workgroup-Manager-Tool | |
308/TCP | Novastor Online Backup | Official |
318/TCP,UDP | TSP, Time Stamp Protocol | |
323/TCP,UDP | IMMP, Internet Message Mapping Protocol | |
383/TCP,UDP | HP OpenView HTTPs Operations Agent | |
366/TCP,UDP | SMTP, Simple Mail Transfer Protocol. ODMR, On-Demand Mail Relay | |
369/TCP,UDP | Rpc2portmap | Official |
371/TCP,UDP | ClearCase albd | Official |
384/TCP,UDP | A Remote Network Server System | |
387/TCP,UDP | AURP, AppleTalk Update-based Routing Protocol | |
389/TCP,UDP | LDAP (Lightweight Directory Access Protocol) | Official |
401/TCP,UDP | UPS Uninterruptible Power Supply | Official |
411/TCP | Direct Connect Hub port | Unofficial |
412/TCP | Direct Connect Client-To-Client port | Unofficial |
427/TCP,UDP | SLP (Service Location Protocol) | Official |
443/TCP | HTTPS - HTTP Protocol over TLS/ SSL (encrypted transmission) | Official |
444/TCP,UDP | SNPP, Simple Network Paging Protocol | |
445/TCP | Microsoft-DS (Active Directory, Windows shares, Sasser worm, Agobot, Zobotworm) | Official |
445/UDP | Microsoft-DS SMB file sharing | Official |
464/TCP,UDP | Kerberos Change/Set password | Official |
465/TCP | Cisco protocol | Official |
465/TCP | SMTP over SSL | Unofficial |
475/TCP | tcpnethaspsrv (Hasp services, TCP/IP version) | Official |
500/TCP,UDP | ISAKMP, IKE-Internet Key Exchange | Official |
502/TCP,UDP | Modbus, Protocol | |
512/TCP | exec, Remote Process Execution | |
512/UDP | comsat, together with biff: notifies users of new c.q. yet unread e-mail | |
513/TCP | Login | |
513/UDP | Who | |
514/TCP | rsh protocol - used to execute non-interactive commandline commands on a remote system and see the screen return | |
514/UDP | syslog protocol - used for system logging | Official |
515/TCP | Line Printer Daemon protocol - used in LPD printer servers | |
517/UDP | Talk | |
518/UDP | NTalk | |
520/TCP | efs | |
520/UDP | Routing - RIP | Official |
513/UDP | Router | |
524/TCP,UDP | NCP (NetWare Core Protocol) is used for a variety things such as access to primary NetWare server resources, Time Synchronization, etc. | Official |
525/UDP | Timed, Timeserver | |
530/TCP,UDP | RPC | Official |
531/TCP,UDP | AOL Instant Messenger, IRC | Unofficial |
532/TCP | netnews | |
533/UDP | netwall, For Emergency Broadcasts | |
540/TCP | UUCP (Unix-to-Unix Copy Protocol) | Official |
542/TCP,UDP | commerce (Commerce Applications) | Official |
543/TCP | klogin, Kerberos login | |
544/TCP | kshell, Kerberos Remote shell | |
546/TCP,UDP | DHCPv6 client | |
547/TCP,UDP | DHCPv6 server | |
548/TCP | AFP (Apple Filing Protocol) | |
550/UDP | new-rwho, new-who | |
554/TCP,UDP | RTSP (Real Time Streaming Protocol) | Official |
556/TCP | Remotefs, rfs, rfs_server | |
560/UDP | rmonitor, Remote Monitor | |
561/UDP | monitor | |
563/TCP,UDP | NNTP protocol over TLS/SSL (NNTPS) | Official |
587/TCP | email message submission (SMTP) (RFC 2476) | Official |
591/TCP | FileMaker 6.0 (and later) Web Sharing (HTTP Alternate, see port 80) | Official |
593/TCP,UDP | HTTP RPC Ep Map (RPC over HTTP, often used by DCOM services and Microsoft Exchange Server) | Official |
604/TCP | TUNNEL | |
631/TCP,UDP | IPP, Internet Printing Protocol | |
636/TCP,UDP | LDAP over SSL (encrypted transmission, also known as LDAPS) | Official |
639/TCP,UDP | MSDP, Multicast Source Discovery Protocol | |
646/TCP | LDP, Label Distribution Protocol | |
647/TCP | DHCP Failover Protocol | |
648/TCP | RRP, Registry Registrar Protocol | |
652/TCP | DTCP, Dynamic Tunnel Configuration Protocol | |
654/TCP | AODV, Ad hoc On-Demand Distance Vector | |
665/TCP | sun-dr, Remote Dynamic Reconfiguration | Unofficial |
666/UDP | Doom, First online first-person shooter | |
674/TCP | ACAP, Application Configuration Access Protocol | |
691/TCP | MS Exchange Routing | Official |
692/TCP | Hyperwave-ISP | |
694/UDP | Linux-HA High availability Heartbeat port | Unofficial |
695/TCP | IEEE-MMS-SSL | |
698/TCP | OLSR, Optimized Link State Routing | |
699/TCP | Access Network | |
700/TCP | EPP, Extensible Provisioning Protocol | |
701/TCP | LMP, Link Management Protocol. | |
702/TCP | IRIS over BEEP | |
706/TCP | SILC, Secure Internet Live Conferencing | |
711/TCP | TDP, Tag Distribution Protocol | |
712/TCP | TBRPF, Topology Broadcast based on Reverse-Path Forwarding | |
720/TCP | SMQP, Simple Message Queue Protocol | |
749/TCP, UDP | kerberos-adm, Kerberos administration | |
750/UDP | Kerberos version IV | |
782/TCP | Conserver serial-console management server | |
829/TCP | CMP (Certificate Management Protocol) | |
860/TCP | iSCSI | |
873/TCP | rsync File synchronisation protocol | Official |
901/TCP | Samba Web Administration Tool (SWAT) | Unofficial |
902 | VMware Server Console[1] | Unofficial |
904 | VMware Server Alternate (if 902 is in use - ie SUSE linux) | Unofficial |
911/TCP | Network Console on Acid (NCA) - local tty redirection over OpenSSH | |
981/TCP | SofaWare Technologies Remote HTTPS management for firewall devices running embedded Checkpoint Firewall-1 software | Unofficial |
989/TCP,UDP | FTP Protocol (data) over TLS/SSL | Official |
990/TCP,UDP | FTP Protocol (control) over TLS/SSL | Official |
991/TCP,UDP | NAS (Netnews Admin System) | |
992/TCP,UDP | Telnet protocol over TLS/SSL | Official |
993/TCP | IMAP4 over SSL (encrypted transmission) | Official |
995/TCP | POP3 over SSL (encrypted transmission) | Official |
[edit] Ports 1024 to 49151
Only those ports that are commonly used are listed, refer to the IANA site for the full list.
When investigating TCP traffic, be careful not to confuse the client and server ports. The client port is incremental, typically beginning at 1024 at boot time and wrapping at 4096. If the port you are investigating is in the lower part of this range, it may be a client port. Stateful firewalls identify the server port, but packet sniffers and stateless firewalls do not. For example, a packet sniffer showing a TCP packet with source port 1080 and destination port 1494 might be SOCKS or Citrix-ICA. The only way to know for sure is to examine the initial TCP handshake.
With UDP, client port selection depends on the application and may be incremental, fixed to a nonsensical value, or fixed equal to the server port.
Port | Description | Status |
---|---|---|
1025/tcp | NFS-or-IIS | Unofficial |
1026/tcp | Often utilized by Microsoft DCOM services | Unofficial |
1029/tcp | Often utilized by Microsoft DCOM services | Unofficial |
1058/tcp | nim AIX Network Installation Manager | Official |
1059/tcp | nimreg | Official |
1080/tcp | SOCKS proxy | Official |
1099/tcp | RMI Registry | Official |
1099/udp | RMI Registry | Official |
1109/tcp | Kerberos POP | |
1140/tcp | AutoNOC | Official |
1167/udp | phone, conference calling | |
1176/tcp | Perceptive Automation Indigo home control server | Official |
1182/tcp,udp | AcceleNet | Official |
1194/udp | OpenVPN | Official |
1198/tcp,udp | The cajo project Free dynamic transparent distributed computing in Java | Official |
1200/udp | Steam Friends Applet | Official |
1214/tcp | Kazaa | Official |
1223/tcp,udp | TGP: "TrulyGlobal Protocol" aka "The Gur Protocol" | Official |
1241/tcp,udp | Nessus Security Scanner | Official |
1248/tcp | NSClient/NSClient++/NC_Net (Nagios) | Unofficial |
1270/tcp,udp | Microsoft Operations Manager 2005 agent (MOM 2005) | Official |
1311/tcp | Dell Open Manage Https Port | Unofficial |
1313/tcp | Xbiim (Canvii server) Port | Unofficial |
1337/tcp | WASTE Encrypted File Sharing Program | Unofficial |
1352/tcp | IBM Lotus Notes/Domino RPC | Official |
1387/tcp | Computer Aided Design Software Inc LM (cadsi-lm ) | Official |
1387/udp | Computer Aided Design Software Inc LM (cadsi-lm ) | Official |
1414/tcp | IBM MQSeries | Official |
1431/tcp | RGTP | Official |
1433/tcp,udp | Microsoft SQL database system | Official |
1434/tcp,udp | Microsoft SQL Monitor | Official |
1494/tcp | Citrix Presentation Server ICA Client | Official |
1512/tcp,udp | WINS | |
1521/tcp | nCube License Manager | Official |
1521/tcp | Oracle database default listener, in future releases official port 2483 | Unofficial |
1524/tcp,udp | ingreslock, ingres | Official |
1526/tcp | Oracle database common alternative for listener | Unofficial |
1533/tcp | IBM Sametime IM - Virtual Places Chat | Official |
1547/tcp | Laplink | Official |
1547/udp | Laplink | Official |
1550 | Gadu-Gadu (Direct Client-to-Client) | Unofficial |
1581/udp | MIL STD 2045-47001 VMF | Official |
1589/udp | Cisco VQP (VLAN Query Protocol) / VMPS | Unofficial |
1627 | iSketch | Unofficial |
1677/tcp | Novell GroupWise clients in client/server access mode | |
1701/udp | l2tp, Layer 2 Tunnelling protocol | |
1716/tcp | America's Army MMORPG Default Game Port | Official |
1723/tcp | Microsoft PPTP VPN | Official |
1723/udp | Microsoft PPTP VPN | Official |
1725/udp | Valve Steam Client | Unofficial |
1755/tcp | Microsoft Media Services (MMS, ms-streaming) | Official |
1755/udp | Microsoft Media Services (MMS, ms-streaming) | Official |
1761/tcp,udp | cft-0 | Official |
1761/tcp | Novell Zenworks Remote Control utility | Unofficial |
1762-1768/tcp,udp | cft-1 to cft-7 | Official |
1812/udp | radius, RADIUS authentication protocol | |
1813/udp | radacct, RADIUS accounting protocol | |
1863/tcp | Windows Live Messenger, MSN | Official |
1900/udp | Microsoft SSDP Enables discovery of UPnP devices | Official |
1935/tcp | Real Time Messaging Protocol (RTMP) raw protocol | Official |
1970/tcp,udp | Danware Data NetOp Remote Control | Official |
1971/tcp,udp | Danware Data NetOp School | Official |
1972/tcp,udp | InterSystems Caché | Official |
1975-77/udp | Cisco TCO ( Documentation) | Official |
1984/tcp | Big Brother - network monitoring tool | Official |
1985/udp | Cisco HSRP | Official |
1998/tcp | Cisco X.25 service (XOT) | |
2000/udp | Cisco SCCP (Skinny) | Official |
2000/tcp | Cisco SCCP (Skinny) | Official |
2002/tcp | Cisco Secure Access Control Server (ACS) for Windows | Unofficial |
2030 | Oracle Services for Microsoft Transaction Server | Unofficial |
2031/tcp | mobrien-chat - Mike O'Brien <mike@mobrien.com> November 2004 | Official |
2031/udp | mobrien-chat - Mike O'Brien <mike@mobrien.com> November 2004 | Official |
2049/udp | nfs, NFS Server | Official |
2049/udp | shilp | Official |
2053/tcp | knetd, Kerberos de-multiplexor | |
2056/udp | Civilization 4 multiplayer | Unofficial |
2074/tcp | Vertel VMF SA (i.e. App.. SpeakFreely) | Official |
2074/udp | Vertel VMF SA (i.e. App.. SpeakFreely) | Official |
2082/tcp | Infowave Mobility Server | Official |
2082/tcp | CPanel, default port | Unofficial |
2083/tcp | Secure Radius Service (radsec) | Official |
2083/tcp | CPanel default SSL port | Unofficial |
2086/tcp | GNUnet | Official |
2086/tcp | WebHost Manager default port | Unofficial |
2087/tcp | WebHost Manager default SSL port | Unofficial |
2095/tcp | CPanel default webmail port | Unofficial |
2096/tcp | CPanel default SSL webmail port | Unofficial |
2161/tcp | ?-APC Agent | Official |
2181/tcp | EForward-document transport system | Official |
2181/udp | EForward-document transport system | Official |
2200/tcp | Tuxanci game server | Unofficial |
2219/tcp | NetIQ NCAP Protocol | Official |
2219/udp | NetIQ NCAP Protocol | Official |
2220/tcp | NetIQ End2End | Official |
2220/udp | NetIQ End2End | Official |
2222/tcp | DirectAdmin's default port | Unofficial |
2222/udp | Microsoft Office OS X antipiracy network monitor [1] | Unofficial |
2301/tcp | HP System Management Redirect to port 2381 | Unofficial |
2302/udp | ArmA multiplayer (default for game) | Unofficial |
2302/udp | Halo: Combat Evolved multiplayer | Unofficial |
2303/udp | ArmA multiplayer (default for server reporting) (default port for game +1) | Unofficial |
2305/udp | ArmA multiplayer (default for VoN) (default port for game +3) | Unofficial |
2369/tcp | Default port for BMC Software CONTROL-M/Server - Configuration Agent port number - though often changed during installation | Unofficial |
2370/tcp | Default port for BMC Software CONTROL-M/Server - Port utilized to allow the CONTROL-M/Enterprise Manager to connect to the CONTROL-M/Server - though often changed during installation | Unofficial |
2381/tcp | HP Insight Manager default port for webserver | Unofficial |
2404/tcp | IEC 60870-5-104 | Official |
2427/udp | Cisco MGCP | Official |
2447/tcp | ovwdb - OpenView Network Node Manager (NNM) daemon | Official |
2447/udp | ovwdb - OpenView Network Node Manager (NNM) daemon | Official |
2483/tcp,udp | Oracle database listening port for unsecure client connections to the listener, replaces port 1521 | Official |
2484/tcp,udp | Oracle database listening port for SSL client connections to the listener | Official |
2546/tcp,udp | Vytal Vault - Data Protection Services | Unofficial |
2593/tcp,udp | RunUO - Ultima Online server | Unofficial |
2598/tcp | new ICA - when Session Reliability is enabled, TCP port 2598 replaces port 1494 | Unofficial |
2612/tcp,udp | QPasa from MQSoftware | Official |
2710/tcp | XBT Bittorrent Tracker | Unofficial |
2710/udp | XBT Bittorrent Tracker experimental UDP tracker extension | Unofficial |
2710/tcp | Knuddels.de | Unofficial |
2735/tcp | NetIQ Monitor Console | Official |
2735/udp | NetIQ Monitor Console | Official |
2809/tcp | corbaloc:iiop URL, per the CORBA 3.0.3 specification. Also used by IBM WebSphere Application Server Node Agent | Official |
2809/udp | corbaloc:iiop URL, per the CORBA 3.0.3 specification. | |
2944/udp | Megaco Text H.248 | Unofficial |
2945/udp | Megaco Binary (ASN.1) H.248 | Unofficial |
2948/tcp | WAP-push Multimedia Messaging Service (MMS) | Official |
2948/udp | WAP-push Multimedia Messaging Service (MMS) | Official |
2949/tcp | WAP-pushsecure Multimedia Messaging Service (MMS) | Official |
2949/udp | WAP-pushsecure Multimedia Messaging Service (MMS) | Official |
2967/tcp | Symantec AntiVirus Corporate Edition | Unofficial |
3000/tcp | Miralix License server | Unofficial |
3000/udp | Distributed Interactive Simulation (DIS), modifiable default port | Unofficial |
3001/tcp | Miralix Phone Monitor | Unofficial |
3002/tcp | Miralix CSTA | Unofficial |
3003/tcp | Miralix GreenBox API | Unofficial |
3004/tcp | Miralix InfoLink | Unofficial |
3006/tcp | Miralix SMS Client Connector | Unofficial |
3007/tcp | Miralix OM Server | Unofficial |
3025/tcp | netpd.org | Unofficial |
3050/tcp,udp | gds_db (Interbase/Firebird) | Official |
3074/tcp,udp | Xbox Live | Official |
3128/tcp | HTTP used by web caches and the default port for the Squid cache | Official |
3260/tcp | iSCSI target | Official |
3268/tcp | msft-gc, Microsoft Global Catalog (LDAP service which contains data from Active Directory forests) | Official |
3269/tcp | msft-gc-ssl, Microsoft Global Catalog over SSL (similar to port 3268, LDAP over SSL version) | Official |
3305/tcp,udp | ODETTE-FTP | Official |
3306/tcp,udp | MySQL Database system | Official |
3333/tcp | Network Caller ID server | Unofficial |
3389/tcp | Microsoft Terminal Server (RDP) officially registered as Windows Based Terminal (WBT) | Official |
3396/tcp | Novell NDPS Printer Agent | Official |
3689/tcp | DAAP Digital Audio Access Protocol used by Apple's iTunes | Official |
3690/tcp | Subversion version control system | Official |
3702/tcp,udp | Web Services Dynamic Discovery (WS-Discovery), used by various components of Windows Vista | Official |
3724/tcp | World of Warcraft Online gaming MMORPG | Official |
3784/tcp | Ventrilo VoIP program used by Ventrilo | Official |
3785/udp | Ventrilo VoIP program used by Ventrilo | Official |
3868 tcp,udp | Diameter base protocol | Official |
3872/tcp | Oracle Management Remote Agent | Unofficial |
3899/tcp | Remote Administrator | Unofficial |
3900/tcp | Unidata UDT OS udt_os | Official |
3945/tcp | Emcads server service port, a Giritech product used by G/On | Official |
4000/tcp | Diablo II game | Unofficial |
4007/tcp | PrintBuzzer printer monitoring socket server | Unofficial |
4089/udp | OpenCORE Remote Control Service | Official |
4089/tcp | OpenCORE Remote Control Service | Official |
4093/udp | PxPlus Client server interface ProvideX | Official |
4093/tcp | PxPlus Client server interface ProvideX | Official |
4096/udp | Bridge-Relay Element ASCOM | Official |
4100 | WatchGuard Authentication Applet - default port | Unofficial |
4111/tcp,udp | Xgrid | Official |
4111/tcp | Microsoft Office SharePoint Portal Server - default administration port | Unofficial |
4226/tcp,udp | Aleph One (computer game) | Unofficial |
4224/tcp | Cisco CDP Cisco discovery Protocol | Unofficial |
4569/udp | Inter-Asterisk eXchange | Unofficial |
4662/tcp | OrbitNet Message Service | Official |
4662/tcp | port often used by eMule | Unofficial |
4664/tcp | Google Desktop Search | Unofficial |
4672/udp | eMule - port often used | Unofficial |
4894/tcp | LysKOM Protocol A | Official |
4899/tcp | Radmin remote administration tool (program sometimes used as a Trojan horse) | Official |
5000/tcp | commplex-main | Official |
5000/tcp | UPnP - Windows network device interoperability | Unofficial |
5000/tcp,udp | VTun - VPN Software | Unofficial |
5001/tcp,udp | Iperf (Tool for measuring TCP and UDP bandwidth performance) | Unofficial |
5001/tcp | Slingbox and Slingplayer | Unofficial |
5003/tcp | FileMaker Filemaker Pro | Official |
5004/udp | RTP Real-time Transport Protocol | Official |
5005/udp | RTP Real-time Transport Protocol | Official |
5031/tcp,udp | AVM CAPI-over-TCP (ISDN over Ethernet tunneling) | Unofficial |
5050/tcp | Yahoo! Messenger Yahoo! Messenger | Official |
5051/tcp | ita-agent Symantec Intruder Alert | Official |
5060/tcp | Session Initiation Protocol (SIP) | Official |
5060/udp | Session Initiation Protocol (SIP) | Official |
5061/tcp | Session Initiation Protocol (SIP) over Transport Layer Security (TLS) | Official |
5093/udp | SPSS License Administrator (SPSS) | Official |
5104/tcp | IBM NetCOOL / IMPACT HTTP Service | Unofficial |
5121/tcp | Neverwinter Nights | Official |
5176/tcp | ConsoleWorks default UI interface | Unofficial |
5190/tcp | ICQ and AOL Instant Messenger | Official |
5222/tcp | XMPP/Jabber - client connection | Official |
5223/tcp | XMPP/Jabber - default port for SSL Client Connection | Unofficial |
5269/tcp | XMPP/Jabber - server connection | Official |
5351/tcp,udp | NAT Port Mapping Protocol - client-requested configuration for inbound connections through network address translators | Official |
5353/udp | mDNS - multicastDNS | |
5402/tcp,udp | StarBurst AutoCast MFTP | Official |
5432/tcp | PostgreSQL database system | Official |
5445/udp | Cisco Vidéo VT Advantage | ??? |
5495/tcp | Applix TM1 Admin server | Unofficial |
5498/tcp | Hotline tracker server connection | Unofficial |
5499/udp | Hotline tracker server discovery | Unofficial |
5500/tcp | VNC remote desktop protocol - for incoming listening viewer, Hotline control connection | Unofficial |
5501/tcp | Hotline file transfer connection | Unofficial |
5517/tcp | Setiqueue Proxy server client for SETI@Home project | Unofficial |
5555/tcp | Freeciv multiplay port for versions up to 2.0, Hewlett Packard Data Protector, SAP | Unofficial |
5556/tcp | Freeciv multiplay port | Official |
5631/tcp | Symantec pcAnywhere | Official |
5632/udp | Symantec pcAnywhere | Official |
5666/tcp | NRPE (Nagios) | Unofficial |
5667/tcp | NSCA (Nagios) | Unofficial |
5800/tcp | VNC remote desktop protocol - for use over HTTP | Unofficial |
5814/tcp,udp | Hewlett-Packard Support Automation (HP OpenView Self-Healing Services) | Official |
5900/tcp | VNC remote desktop protocol (used by ARD) | Official |
6000/tcp | X11 - used between an X client and server over the network | Official |
6001/udp | X11 - used between an X client and server over the network | Official |
6005/tcp | Default port for BMC Software CONTROL-M/Server - Socket Port number used for communication between CONTROL-M processes - though often changed during installation | Unofficial |
6050/tcp | Brightstor Arcserve Backup | Unofficial |
6051/tcp | Brightstor Arcserve Backup | Unofficial |
6100/tcp | Vizrt System | Unofficial |
6110/tcp | softcm HP SoftBench CM | Official |
6110/udp | softcm HP SoftBench CM | Official |
6111/tcp | spc HP SoftBench Sub-Process Control | Official |
6111/udp | spc HP SoftBench Sub-Process Control | Official |
6112/tcp | "dtspcd" - a network daemon that accepts requests from clients to execute commands and launch applications remotely | Official |
6112/tcp | Blizzard's Battle.net gaming service, ArenaNet gaming service | Official |
6129/tcp | Dameware Remote Control | Unofficial |
6257/udp | WinMX (see also 6699) | Unofficial |
6346/tcp,udp | gnutella-svc (FrostWire, Limewire, Bearshare, etc.) | Official |
6347/tcp,udp | gnutella-rtr | Official |
6502/tcp,udp | Danware Data NetOp Remote Control | Unofficial |
6522/tcp | Gobby (and other libobby-based software) | Unofficial |
6543/udp | Jetnet - default port that the Paradigm Research & Development Jetnet protocol communicates on | Unofficial |
6566/tcp | SANE (Scanner Access Now Easy) - SANE network scanner daemon | Unofficial |
6619/tcp,udp | ODETTE-FTP over TLS/SSL | Official |
6665-6669/tcp | Internet Relay Chat | Official |
6679/tcp | IRC SSL (Secure Internet Relay Chat) - port often used | Unofficial |
6697/tcp | IRC SSL (Secure Internet Relay Chat) - port often used | Unofficial |
6699/tcp | WinMX (see also 6257) | Unofficial |
6881-6999/tcp,udp | BitTorrent full range of ports used most often | Unofficial |
6891-6900/tcp,udp | Windows Live Messenger (File transfer) | Official |
6901/tcp,udp | Windows Live Messenger (Voice) | Official |
6969/tcp | acmsoda | Official |
6969/tcp | BitTorrent tracker port | Unofficial |
7000/tcp | Default port for Azureus's built in HTTPS Bittorrent Tracker | Unofficial |
7001/tcp | Default port for BEA WebLogic Server's HTTP server - though often changed during installation | Unofficial |
7002/tcp | Default port for BEA WebLogic Server's HTTPS server - though often changed during installation | Unofficial |
7005/tcp,udp | Default port for BMC Software CONTROL-M/Server and CONTROL-M/Agent's - Agent to Server port though often changed during installation | Unofficial |
7006/tcp,udp | Default port for BMC Software CONTROL-M/Server and CONTROL-M/Agent's - Server to Agent port though often changed during installation | Unofficial |
7010/tcp | Default port for Cisco AON AMC (AON Management Console) [2] | Unofficial |
7171/tcp | Tibia | |
7312/udp | Sibelius License Server port | Unofficial |
7670/tcp | BrettspielWelt BSW Boardgame Portal | Unofficial |
7777/tcp | Default port used by Windows backdoor program tini.exe | Unofficial |
8000/tcp | iRDMI - often mistakenly used instead of port 8080 (The Internet Assigned Numbers Authority (iana.org) officially lists this port for iRDMI protocol) | Official |
8000/tcp | Common port used for internet radio streams such as those using SHOUTcast | Unofficial |
8002/tcp | Cisco Systems Unified Call Manager Intercluster Port | |
8008/tcp | HTTP Alternate | Official |
8008/tcp | IBM HTTP Server default administration port | Unofficial |
8010/tcp | XMPP/Jabber File transfers | Unofficial |
8074/tcp | Gadu-Gadu | Unofficial |
8080/tcp | HTTP Alternate (http_alt) - commonly used for web proxy and caching server, or for running a web server as a non-root user | Official |
8080/tcp | Jakarta Tomcat | Unofficial |
8086/tcp | HELM Web Host Automation Windows Control Panel | Unofficial |
8086/tcp | Kaspersky AV Control Center TCP Port | Unofficial |
8087/tcp | Hosting Accelerator Control Panel | Unofficial |
8087/udp | Kaspersky AV Control Center UDP Port | Unofficial |
8090/tcp | Another HTTP Alternate (http_alt_alt) - used as an alternative to port 8080 | Unofficial |
8118/tcp | Privoxy web proxy - advertisements-filtering web proxy | Official |
8087/tcp | SW Soft Plesk Control Panel | Unofficial |
8200/tcp | GoToMyPC | Unofficial |
8220/tcp | Bloomberg | Unofficial |
8222 | VMware Server Management User Interface (insecure web interface) [2]. See also, port 8333 | Unofficial |
8291/tcp | Winbox - Default port on a MikroTik RouterOS for a Windows application used to administer MikroTik RouterOS | Unofficial |
8294/tcp | Bloomberg | Unofficial |
8333 | VMware Server Management User Interface (secure web interface) [3]. See also, port 8222 | Unofficial |
8400 | Commvault Unified Data Management | Official |
8443/tcp | SW Soft Plesk Control Panel | Unofficial |
8500/tcp | ColdFusion Macromedia/Adobe ColdFusion default Webserver port | Unofficial |
8501 | Duke Nukem 3D - Default Online Port | Official |
8767 | TeamSpeak - Default UDP Port | Unofficial |
8880 | WebSphere Application Server SOAP Connector port | |
8881/tcp | Atlasz Informatics Research Ltd Secure Application Server | Unofficial |
8882/tcp | Atlasz Informatics Research Ltd Secure Application Server | Unofficial |
8888/tcp,udp | NewsEDGE server | Official |
8888/tcp | Sun Answerbook dwhttpd server (deprecated by docs.sun.com) | Unofficial |
8888/tcp | GNUmp3d HTTP music streaming and web interface port | Unofficial |
9000/tcp | Buffalo LinkSystem web access | Unofficial |
9000/tcp | DBGp | Unofficial |
9000/udp | UDPCast | Unofficial |
9001 | cisco-xremote router configuration | Unofficial |
9001 | Tor network default port | Unofficial |
9001/tcp | DBGp Proxy | Unofficial |
9009/tcp,udp | Pichat Server - Peer to peer chat software | Official |
9043/tcp | WebSphere Application Server Administration Console secure port | |
9060/tcp | WebSphere Application Server Administration Console | |
9100/tcp | Jetdirect HP Print Services | Official |
9110/udp | SSMP Message protocol | Unofficial |
9101 | Bacula Director | Official |
9102 | Bacula File Daemon | Official |
9103 | Bacula Storage Daemon | Official |
9119/TCP,UDP | MXit Instant Messenger | Official |
9535/tcp | man, Remote Man Server | |
9535 | mngsuite - Management Suite Remote Control | Official |
9800/tcp,udp | WebDav Source Port | Official |
9800 | WebCT e-learning portal | Unofficial |
9999 | Hydranode - edonkey2000 telnet control port | Unofficial |
9999 | Urchin Web Analytics | Unofficial |
10000 | Webmin - web based Linux admin tool | Unofficial |
10000 | BackupExec | Unofficial |
10008 | Octopus Multiplexer - CROMP protocol primary port, hoople.org | Official |
10017 | AIX,NeXT, HPUX - rexd daemon control port | Unofficial |
10050/udp | Zabbix-Server | |
10051/udp | Zabbix-Agent | |
10113/tcp | NetIQ Endpoint | Official |
10113/udp | NetIQ Endpoint | Official |
10114/tcp | NetIQ Qcheck | Official |
10114/udp | NetIQ Qcheck | Official |
10115/tcp | NetIQ Endpoint | Official |
10115/udp | NetIQ Endpoint | Official |
10116/tcp | NetIQ VoIP Assessor | Official |
10116/udp | NetIQ VoIP Assessor | Official |
10480 | SWAT 4 Dedicated Server | Unofficial |
11235 | Savage:Battle for Newerth Server Hosting | Unofficial |
11294 | Blood Quest Online Server | Unofficial |
11371 | OpenPGP HTTP Keyserver | Official |
11576 | IPStor Server management communication | Unofficial |
12345 | NetBus - remote administration tool (often Trojan horse ). Also used by NetBuster. Little Fighter 2 (TCP). | Unofficial |
12975/tcp | LogMeIn Hamachi (VPN tunnel software;also port 32976) | |
13720/tcp | Symantec NetBackup - bprd (formerly VERITAS) | |
13721/tcp | Symantec NetBackup - bpdbm (formerly VERITAS) | |
13724/tcp | Symantec Network Utility - vnet (formerly VERITAS) | |
13782/tcp | Symantec NetBackup - bpcd (formerly VERITAS) | |
13783/tcp | Symantec VOPIED protocol (formerly VERITAS) | |
14567/udp | Battlefield 1942 and mods | Unofficial |
15000/tcp | psyBNC | Unofficial |
15000/tcp | Wesnoth | |
15567/udp | Battlefield Vietnam and mods | Unofficial |
15345/udp | XPilot | Official |
16000/tcp | shroudBNC | Unofficial |
16080/tcp | Mac OS X Server performance cache for HTTP [4] | Unofficial |
16384/udp | Iron Mountain Digital - online backup | Unofficial |
16567/udp | Battlefield 2 and mods | Unofficial |
19226/tcp | Panda Software AdminSecure Communication Agent | Unofficial |
19638/tcp | Ensim Control Panel | Unofficial |
19813/tcp | 4D database Client Server Communication | Unofficial |
20000 | Usermin - web based user tool | Official |
20720/tcp | Symantec i3 Web GUI server | Unofficial |
22347/tcp,udp | WibuKey - default port for WibuKey Network Server of WIBU-SYSTEMS AG | Official |
22350/tcp,udp | CodeMeter - default port for CodeMeter Server of WIBU-SYSTEMS AG | Official |
24554/tcp,udp | binkp - Fidonet mail transfers over TCP/IP | Official |
24800 | Synergy: keyboard/mouse sharing software | Unofficial |
24842 | StepMania: Online: Dance Dance Revolution Simulator | Unofficial |
25999/tcp | Xfire | Unofficial |
26000/tcp,udp | id Software's Quake server, | Official |
26000/tcp | CCP's EVE Online Online gaming MMORPG, | Unofficial |
27000/udp | (through 27006) id Software's QuakeWorld master server | Unofficial |
27010 | Half-Life and its mods, such as Counter-Strike | Unofficial |
27015 | Half-Life and its mods, such as Counter-Strike | Unofficial |
27374 | Sub7's default port. Most script kiddies do not change the default port. | Unofficial |
27500/udp | (through 27900) id Software's QuakeWorld | Unofficial |
27888/udp | Kaillera server | Unofficial |
27900 | (through 27901) Nintendo Wi-Fi Connection | Unofficial |
27901/udp | (through 27910) id Software's Quake II master server | Unofficial |
27960/udp | (through 27969) Activision's Enemy Territory and id Software's Quake III Arena and Quake III and some ioquake3 derived games | Unofficial |
28910 | Nintendo Wi-Fi Connection | Unofficial |
28960 | Call of Duty 2 Common Call of Duty 2 port - (PC Version) | Unofficial |
29900 | (through 29901) Nintendo Wi-Fi Connection | Unofficial |
29920 | Nintendo Wi-Fi Connection | Unofficial |
30000 | Pokemon Netbattle | Unofficial |
30564/tcp | Multiplicity: keyboard/mouse/clipboard sharing software | Unofficial |
31337/tcp | Back Orifice - remote administration tool (often Trojan horse) | Unofficial |
31337/tcp | xc0r3 - xc0r3 security antivir port | Unofficial |
31415 | ThoughtSignal - Server Communication Service (often Informational) | Unofficial |
31456-31458/tcp | TetriNET ports (in order: IRC, game, and spectating) | Unofficial |
32245/tcp | MMTSG-mutualed over MMT (encrypted transmission) | Unofficial |
33434 | traceroute | Official |
37777/tcp | Digital Video Recorder hardware | Unofficial |
36963 | Counter Strike 2D multiplayer port (2D clone of popular CounterStrike computer game) | Unofficial |
40000 | SafetyNET p | Official |
43594-43595/tcp | RuneScape | Unofficial |
47808 | BACnet Building Automation and Control Networks | Official |
[edit] Ports 49152 to 65535
By definition, no ports can be officially registered in the Dynamic Ports range. [5]
[edit] Multi cast Adresses
228.1.1.20/IP | BACnet |