Default Ports for Various Common Services

Although it is recommended that these default ports be changed whenever possible to add an additional layer of security (via obfuscation), default ports are a good rule of thumb for Network Engineers to begin troubleshooting connectivity issues. Moreover, security penetration testing often reference these numbers during port scanning, prior to applying exploit plugins.

FTP:
21/TCP
TFTP:
69/UDP
8099/TCP (user interface to TFTP service traffic)
SMB:
445/TCP
137,138/UDP
139/TCP (NetBIOS)
Active Directory:
53/UDP
636/UDP,TCP
88/UDP,TCP 464/UDP,TCP
3268/UDP,TCP
RDP:
3389/TCP
WinCollect:
135/TCP (Microsoft Endpoint Mapper)
137/UDP (NetBIOS name service)
138/UDP (NetBIOS datagram service)
139/TCP (NetBIOS session service)
445/TCP (Microsoft Directory Services for file transfers that use Windows share)
49152-65535/TCP (Default dynamic port range for TCP/IP)
OpenLDAP:
389/TCP
636/TCP (LDAP SSL)
NTP:
123/UDP
RPC:
135/TCP (default listener)
49152-65535/TCP (RPC outgoing port range)
Websense Proxy:
80,443/TCP (incoming requests)
9443,19448/TCP (UI Browsing)
22/TCP (Protector)
https://www.websense.com/content/support/library/deployctr/v76/triton_ports.aspx
Squid:
3128,3129/TCP (HTTP default port)
PostgreSQL:
8432/TCP
MySQL
3306/TCP
Microsoft SQL
--------------------------
Inbound:
1433/TCP (default listener)
1434/UDP (browser service)
4022/TCP (service broker)
5022/TCP (AlwaysOn High Availability default)
135/TCP (Transaction SQL Debugger)
2383/TCP (Analysis Services)
2382/TCP (SQL Server Browser Service)
500,4500/UDP (IPSec)
137-138/UDP (NetBios / CIFS)
139/TCP (NetBios CIFS)
445/TCP (CIFS)

Outbound:
49152-65535
Oracle SQL:
1521/TCP
1630/TCP
3938/HTTP
MongoDB:
27017,27018,27019/TCP
Veeam:
80/TCP (download updates)
443/TCP (HTTPS license auto-update)
10443/TCP (HTTPS)
902/TCP (Data Transfer)
22/TCP (control channel)
1433/TCP (Microsoft SQL backup via Veeam)
53/UDP (DNS communication)
9501/TCP (communication between Veeam Broker Service and its components)
9392/TCP (Replication)
10003/TCP (Veeam Cloud Connect)
2500/TCP (transmission channels)
6160/TCP (Veeam installer service)
6161/TCP (Veeam vPower NFS Service)
6162/TCP (Data Mover service)
RPC
SMB
HPE StoreOnce
111/TCP (mountd service used by NFS and DDBOOST)
2049 (NFS)
2052 (NFS mountd)
HPE StoreOnce
9387,9389/TCP
Norton
139,445/TCP
137,138/UDP
22/TCP
2967,2968/TCP
2638/TCP
1433/TCP
8443,8444/TCP
9090/TCP
8014/TCP
443/HTTPS
8081/HTTP
8082/HTTPS
8445,8446,8447/TCP
8765/TCP
1100/TCP
514/UDP
WhatsUpGold
ICMP
20/TCP (inbound FTP)
21-23/TCP (outbound FTP)
25/TCP (outbound mail)
53/UDP (outbound DNS)
80/TCP (outbound monitoring)
80,443/TCP (inbound webserver)
https://community.ipswitch.com/s/article/Network-ports-used-by-Ipswitch-Network-Management-products-1307717736810
SNMP:
161,162/UDP,TCP
Altiris:
5663/TCP
50124/TCP
KMS:
1688/TCP
SSH:
22/TCP
HTTP:
80/TCP
443/TCP
SMTP:
25/TCP (Non-Encrypted, Auth)
587/TCP (Secure TLS, StartTLS)
465/TCP (Secure SSL, SSL)
POP3:
110/TCP (Unencrypted, Auth)
995/TCP (Secure SSL, SSL)

Leave a Reply

Your email address will not be published. Required fields are marked *