Shulou(Shulou.com)06/02 Report--

List of all ports used by AD domain controllers

: lol

Port protocol application protocol system service name

NAMA GRE GRE (IP Protocol 47) routing and remote access

NAMA ESP IPSec ESP (IP protocol 50) routing and remote access

An AH IPSec AH (IP 51) routing and remote access

7 TCP Echo simple TCP/IP Service

7 UDP Echo simple TCP/IP Service

9 TCP Discard simple TCP/IP Service

9 UDP Discard simple TCP/IP Service

13 TCP Daytime simple TCP/IP Service

13 UDP Daytime simple TCP/IP Service

17 TCP Quotd simple TCP/IP Service

17 UDP Quotd simple TCP/IP Service

19 TCP Chargen simple TCP/IP Service

19 UDP Chargen simple TCP/IP Service

20 TCP FTP default data FTP publishing service

21 TCP FTP controls FTP publishing service

21 TCP FTP controls the application layer gateway service

23 TCP Telnet Telnet

25 TCP SMTP simple Mail transfer Protocol

25 UDP SMTP simple Mail transfer Protocol

25 TCP SMTP Exchange Server

25 UDP SMTP Exchange Server

42 TCP WINS replication Windows Internet name Service

42 UDP WINS replication Windows Internet name Service

53 TCP DNS DNS Server

53 UDP DNS DNS Server

53 TCP DNS Windows Firewall / Internet connection sharing

53 UDP DNS Windows Firewall / Internet connection sharing

67 UDP DHCP Server DHCP Server

67 UDP DHCP Server Windows Firewall / Internet connection sharing

69 UDP TFTP ordinary FTP daemon service

80 TCP HTTP Windows Media Services

80 TCP HTTP World wide Web publishing service

80 TCP HTTP SharePoint Portal Server

88 TCP Kerberos Kerberos key Distribution Center

88 UDP Kerberos Kerberos key Distribution Center

102 TCP X.400 Microsoft Exchange MTA stack

110TCP POP3 Microsoft POP3 service

110 TCP POP3 Exchange Server

119TCP NNTP Network News Transmission Protocol

123 UDP NTP Windows time

123 UDP SNTP Windows time

135 TCP RPC message queuing

135 TCP RPC remote procedure call

135 TCP RPC Exchange Server

135 TCP RPC Certificate Services

135 TCP RPC Cluster Service

135 TCP RPC distributed file system

135TCP RPC distributed link tracking

135TCP RPC distributed transaction Coordinator

135 TCP RPC event Log

135 TCP RPC Fax Service

135 TCP RPC file replication

135 TCP RPC Local Security Agency

135 TCP RPC remote Storage Notification

135TCP RPC remote Storage Server

135 TCP RPC Systems Management Server 2.0

135 TCP RPC Terminal Services Licensing

135 TCP RPC Terminal Services session directory

137 UDP NetBIOS name resolution computer browser

137 UDP NetBIOS name resolution server

137 UDP NetBIOS name resolution Windows Internet name service

137 UDP NetBIOS name resolution Net Logon

137 UDP NetBIOS name resolution Systems Management Server 2.0

138The UDP NetBIOS Datagram Service computer browser

138UDP NetBIOS Datagram Service Messenger

138UDP NetBIOS Datagram Service Server

138UDP NetBIOS Datagram Service Net Logon

138 UDP NetBIOS Datagram Service distributed File system

138UDP NetBIOS Datagram Service Systems Management Server 2.0

138UDP NetBIOS Datagram Service license recording Service

139 TCP NetBIOS session service computer browser

139 TCP NetBIOS session Service Fax Service

139 TCP NetBIOS session Service performance logs and Alerts

139 TCP NetBIOS session service spooler

139 TCP NetBIOS session Service Server

139 TCP NetBIOS session Service Net Logon

139 TCP NetBIOS session service remote procedure call locator

139 TCP NetBIOS session service distributed file system

139 TCP NetBIOS session Service Systems Management Server 2.0

139 TCP NetBIOS session Service license recording Service

143 TCP IMAP Exchange Server

161The UDP SNMP SNMP service

162 UDP SNMP Trap outbound SNMP Trap Service

389 TCP LDAP server local security organization

389 UDP LDAP server local security organization

389 TCP LDAP server distributed file system

389 UDP LDAP server distributed file system

443 TCP HTTPS HTTP SSL

443 TCP HTTPS World wide Web Publishing Service

443 TCP HTTPS SharePoint Portal Server

445 TCP SMB fax service

445 TCP SMB spooler

445 TCP SMB server

445 TCP SMB remote procedure call locator

445 TCP SMB distributed file system

445 TCP SMB license recording service

445 TCP SMB Net Logon

500 UDP IPSec ISAKMP Local Security Agency

515 TCP LPD TCP/IP print server

548 TCP Macintosh File Server Macintosh File Server

554 TCP RTSP Windows Media Services

563 TCP NNTP over SSL Network News Transmission Protocol

RPC remote procedure call on 593 TCP HTTP

RPC Exchange Server on 593 TCP HTTP

636 TCP LDAP SSL Local Security Agency

636 UDP LDAP SSL Local Security Agency

IMAP Exchange Server on 993 TCP SSL

POP3 Exchange Server on 995 TCP SSL

1270 TCP MOM-Encrypted Microsoft Operations Manager 2000

SQL Microsoft SQL Server on 1433 TCP TCP

SQL MSSQL$UDDI on 1433 TCP TCP

1434 UDP SQL Probe Microsoft SQL Server

1434 UDP SQL Probe MSSQL$UDDI

1645 UDP Legacy RADIUS Internet Authentication Service

1646 UDP Legacy RADIUS Internet Authentication Service

1701 UDP L2TP routing and remote access

1723 TCP PPTP routing and remote access

1755 TCP MMS Windows Media Services

1755 UDP MMS Windows Media Services

1801 TCP MSMQ message queuing

1801 UDP MSMQ message queuing

1812 UDP RADIUS Authentication Internet Authentication Service

1813 UDP RADIUS Billing Internet Authentication Service

1900 UDP SSDP SSDP Discovery Service

2101 TCP MSMQ-DCs message queuing

2103 TCP MSMQ-RPC message queuing

2105 TCP MSMQ-RPC message queuing

2107 TCP MSMQ-Mgmt message queuing

2393 TCP OLAP Services 7.0 SQL Server: lower-level OLAP client support

2394 TCP OLAP Services 7.0 SQL Server: lower-level OLAP client support

2460 UDP MS Theater Windows Media Services

2535 UDP MADCAP DHCP Server

2701 TCP SMS remote Control (Control) SMS remote Control Agent

2701 UDP SMS remote Control (Control) SMS remote Control Agent

2702 TCP SMS remote Control (data) SMS remote Control Agent

2702 UDP SMS remote Control (data) SMS remote Control Agent

2703 TCP SMS remote chat SMS remote Control Agent

2703 UPD SMS remote chat SMS remote Control Agent

2704 TCP SMS remote File transfer SMS remote Control Agent

2704 UDP SMS remote File transfer SMS remote Control Agent

2725 TCP SQL Analysis Service SQL Analysis Server

2869 TCP UPNP Universal plug and play device Host

2869 TCP SSDP event Notification SSDP Discovery Service

3268 TCP Global Catalog Server Local Security Agency

3269 TCP Global Catalog Server Local Security Agency

3343 UDP Cluster Service Cluster Service

3389 TCP Terminal Services NetMeeting remote Desktop sharing

3389 TCP Terminal Services Terminal Services

3527 UDP MSMQ-Ping message queuing

4011 UDP BINL remote installation

4500 UDP NAT-T Local Security Agency

5000 TCP SSDP Old event Notification SSDP Discovery Service

5004 UDP RTP Windows Media Services

5005 UDP RTCP Windows Media Services

42424 TCP ASP.Net session State ASP.NET State Service

51515 TCP MOM-Clear Microsoft Operations Manager 2000

The "system Service Ports" section of this article contains a short description of each service, showing the logical name of the service, and indicating the ports and protocols that each service requires to operate correctly. Use this section to help identify the ports and protocols used by a particular service.

The "ports and protocols" section of this article includes a table that summarizes the information in the "system service ports" section. This table is sorted by port number, not by service name. Use this section to quickly determine which services are listening on a specific port.

In this paper, some terms are used in a specific way. To avoid confusion, be sure to understand how these terms are used in this article. These terms are described in the following table:

System services: Windows server systems include many products, such as the Microsoft Windows Server 2003 series, Microsoft Exchange 2000 Server and Microsoft SQL Server 2000. All of these products include many components, and system services are one of them. The system services required for a particular computer are either automatically started by the operating system during startup or, as needed, during typical operations. For example, on computers running Windows Server 2003 Enterprise Edition, some of the system services available include server services, spooler services, and World wide Web publishing services. Each system service has a memorable service name and a service name. Memorable service names are those that appear in graphical management tools, such as the Services Microsoft Management console (MMC) snap-in. The service name is the name used for command-line tools and many scripting languages. Each system service can provide one or more network services.

Application protocols: in this article, an application protocol is an advanced network protocol that uses one or more TCP/IP protocols and ports. Examples of application protocols include Hypertext transfer Protocol (HTTP), Server message Block (SMB), and simple Mail transfer Protocol (SMTP).

Protocol: the TCP/IP protocol runs at a level lower than the application protocol and is the standard format for communication between devices on the network. The TCP/IP protocol suite includes TCP, user Datagram Protocol (UDP), and Internet Control message Protocol (ICMP).

Port: this is the network port on which the system service listens for incoming network traffic.

This article does not specify which services rely on other services for network communication. For example, many services rely on the remote procedure call (RPC) function in Microsoft Windows or the DCOM function to assign them dynamic TCP ports. The remote procedure call service coordinates requests through other system services that use RPC or DCOM to communicate with the client computer. Many other services rely on the network basic input / output system (NetBIOS), SMB, and protocols (actually provided by server services). Other services rely on HTTP or secure Hypertext transfer Protocol (HTTPS). These protocols are provided by Internet Information Services (IIS). A complete discussion of the Windows operating system infrastructure is beyond the scope of this article. However, detailed documentation on this topic is available on Microsoft TechNet and Microsoft Developer Network (MSDN). Although many services may depend on a specific TCP port or UDP port, only one service or process can actively listen on this port at any time.

When RPC is used for transmission with TCP/IP or UDP/IP, inbound ports are often dynamically assigned to system services as needed; TCP/IP ports and UDP/IP ports higher than port 1024 are used. These ports are often informally referred to as "random RPC ports". In these cases, RPC clients rely on the RPC endpoint mapper to inform them which dynamic ports are assigned to the server. For some RPC-based services, you can configure a specific port instead of having RPC assign ports dynamically. In addition, for any service, the port range dynamically allocated by RPC can be limited to a small range. For more information on this topic, see the reference section of this article.

This article contains information about the system service roles and server roles for the Microsoft products listed in the "for" section at the end of this article. While this information may also apply to Microsoft Windows XP and Microsoft Windows 2000 Professional, this article focuses on server-like operating systems. Therefore, this article introduces the port on which the service listens, rather than the port that the client program uses to connect to the remote system.

Return to the top of the page

System service port

This section provides a description of each system service, including the logical name corresponding to the system service, and shows the ports and protocols required for each service.

Application layer Gateway Service

This subcomponent of the Internet connection sharing (ICS) / Windows firewall service provides support for plug-ins that allow network protocols to work behind Internet connection sharing through the firewall. The Application layer Gateway (ALG) plug-in can open ports and change data (such as ports and IP addresses) embedded in packets. File transfer Protocol (FTP) is the only network protocol with a plug-in that ships with Windows Server 2003 Standard Edition and Windows Server 2003 Enterprise Edition. The ALG FTP plug-in is designed to support active FTP sessions through the network address translation (NAT) engine used by these components. The ALG FTP plug-in supports these sessions by redirecting all traffic through the NAT and traffic to port 21 that is destined for dedicated listening ports in the range 3000 to 5000 on the loopback adapter. The ALG FTP plug-in then monitors and updates the FTP control channel traffic so that the FTP plug-in can forward the port mapping through the NAT of the FTP data channel. The FTP plug-in also updates the ports in the FTP control channel flow.

System service name: ALG application protocol port

FTP controls TCP 21

ASP.NET status Service

The ASP.NET state service supports ASP.NET out-of-process session state. The ASP.NET state service stores session data out of process. This service uses sockets to communicate with the ASP.NET running on the Web server.

System service name: aspnet_state application protocol port

ASP.NET session state TCP 42424

Certificate service

Certificate services are part of the core operating system. Using certificate services, an enterprise can act as its own certification authority (CA). In this way, enterprises can issue and manage digital certificates for programs and protocols such as secure / Multipurpose Internet Mail extensions (S/MIME), secure Sockets layer (SSL), encrypted File system (EFS), IPSec, and smart card logins. Certificate Services uses a random TCP port higher than port 1024 and relies on RPC and DCOM to communicate with the client.

System service name: CertSvc application protocol port

RPC TCP 135

Randomly assigned high TCP port TCP random port number

Cluster service

The Cluster service controls server cluster operations and manages cluster databases. A cluster is a collection of independent computers that act as a single computer. Administrators, programmers, and users see the cluster as a system. This software distributes data between cluster nodes. If one node fails, the other nodes will provide the services and data originally provided by the lost node. When a node is added or repaired, the cluster software migrates some data to that node.

System service name: ClusSvc application protocol port

Cluster Service UDP 3343

RPC TCP 135

Randomly assigned high TCP port TCP random port number

Computer browser

The computer browser system service maintains a list of up-to-date computers on the network and provides this list at the request of the program. Windows-based computers use the computer browser service to view network domains and resources. The computer designated as the browser maintains browse lists that contain all shared resources used on the network. Earlier versions of Windows programs, such as Network neighbors, the net view command, and Windows Explorer, require browsing capabilities. For example, when you turn on Network places on a computer running Microsoft Windows 95, a list of domains and computers appears. To display this list, the computer gets a copy of the browse list from the computer that is designated as the browser.

System service name: Browser application protocol port

NetBIOS Datagram Service UDP 138

NetBIOS name resolution UDP 137

NetBIOS session Service TCP 139

DHCP server

The DHCP Server service automatically assigns IP addresses using dynamic Host configuration Protocol (DHCP). Using this service, you can adjust the advanced network settings of the DHCP client. For example, you can configure network settings such as Domain name system (DNS) servers and Windows Internet name Service (WINS) servers. You can set up one or more DHCP servers to maintain TCP/IP configuration information and provide this information to client computers.

System service name: DHCPServer application protocol port

DHCP Server UDP 67

MADCAP UDP 2535

Distributed file system

The distributed File system (DFS) service manages logical volumes distributed over a local area network (LAN) or wide area network (WAN) and is necessary for Microsoft Active Directory directory service SYSVOL sharing. DFS is a distributed service that integrates different file shares into one logical namespace.

System service name: Dfs application protocol port

NetBIOS Datagram Service UDP 138

NetBIOS session Service TCP 139

LDAP Server TCP 389

LDAP Server UDP 389

SMB TCP 445

RPC TCP 135

Randomly assigned high TCP port TCP random port number

Distributed link tracking server

The distributed Link tracking Server system service stores information so that files moving between volumes can be traced to each volume in the domain. The distributed Link tracking Server service runs on all domain controllers in a domain. This service enables the distributed Link tracking Server client service to track linked documents that have been moved to a location in another NTFS file system in the same domain.

System service name: TrkSvr application protocol port

RPC TCP 135

Randomly assigned high TCP port TCP random port number

Distributed transaction coordinator

The distributed transaction Coordinator (DTC) system service is responsible for coordinating transactions distributed across computer systems and resource managers, such as databases, message queues, file systems, and other transaction protection resource managers. If transactional components are configured through COM+, DTC system services are required. Transactional queues in message queuing (also known as MSMQ) and SQL Server running across multiple systems also require DTC system services.

System service name: MSDTC application protocol port

RPC TCP 135

Randomly assigned high TCP port TCP random port number

DNS Server

The DNS Server service enables DNS name resolution by answering queries and update requests for DNS names. A DNS server is required to find devices and services that use DNS identity, as well as to find domain controllers in Active Directory.

System service name: DNS application protocol port

DNS UDP 53

DNS TCP 53

Event log

The event Log system service records event messages generated by programs and the Windows operating system. Event log reports contain information that is useful for diagnosing problems. View the report in the event Viewer. The event log service writes events sent by programs, services, and operating systems to log files. These events contain not only errors specific to the source program, service, or component, but also diagnostic information. Logs can be viewed programmatically through the event log API or through the event Viewer in the MMC snap-in.

System service name: Eventlog application protocol port

RPC TCP 135

Randomly assigned high TCP port TCP random port number

Exchange Server

Microsoft Exchange Server includes several system services. When a MAPI client, such as Microsoft Outlook, connects to Exchange Server, the client first connects to the RPC endpoint mapper (RPC locator service) on TCP port 135. The RPC endpoint mapper tells the client which ports to use to connect to the Exchange Server service. These ports are assigned dynamically. Microsoft Exchange Server 5.5 uses two ports: one for information storage and one for directories. Microsoft Exchange 2000 Server and Microsoft Exchange Server 2003 use three ports: one for information storage and two for system attendants. By using RPC on HTTP, you can also use Microsoft Office Outlook 2003 to connect to a server running Exchange Server 2003. Exchange servers also support other protocols, such as SMTP, Post Office Protocol 3 (POP3), and IMAP.

Application protocol port

IMAP TCP 143

IMAP TCP 993 on SSL

POP3 TCP 110

POP3 TCP 995 on SSL

Randomly assigned high TCP port TCP random port number

RPC TCP 135

RPC TCP 593on HTTP

SMTP TCP 25

SMTP UDP 25

Fax service

Fax service, Telephony API (TAPI) compliant system service, providing fax function. Using the fax service, users can send and receive faxes from their desktop programs using local fax devices or shared network fax devices.

System service name: Fax application protocol port

NetBIOS session Service TCP 139

RPC TCP 135

Randomly assigned high TCP port TCP random port number

SMB TCP 445

File copy

The File replication Service (FRS) allows files to be automatically copied and maintained on many servers at the same time. FRS is an automatic file replication service in Windows 2000 and Windows Server 2003 that replicates SYSVOL shares to all domain controllers. In addition, FRS can be configured to copy files between alternate destinations associated with the fault-tolerant DFS.

System service name: NtFrs application protocol port

RPC TCP 135

Randomly assigned high TCP port TCP random port number

Macintosh file server

Using the Macintosh File Server system service, Macintosh computer users can store and access files on computers running Windows Server 2003. If this service is turned off or disabled, Macintosh clients will not be able to access or store files on this computer.

System service name: MacFile application protocol port

Macintosh File Server TCP 548

FTP publishing service

The FTP publishing service provides FTP connections. By default, the FTP control port is 21. However, this system service can be configured through the Internet Information Services (IIS) Manager snap-in. The default data port (that is, the port used by active mode FTP) is automatically set to one port lower than the control port. Therefore, if the control port is configured as port 4131, the default data port is port 4130. Most FTP clients use passive mode FTP. This means that the client initially connects to the FTP server using the control port, which assigns a high TCP port between 1025 and 5000, and then the client opens another FTP server connection to pass the data. The range of high ports can be configured using the IIS Metabase.

System service name: MSFTPSVC application protocol port

FTP controls TCP 21

FTP default data TCP 20

Randomly assigned high TCP port TCP random port number

HTTP SSL

HTTP SSL system services enable IIS to perform SSL functions. SSL is an open standard used to establish encrypted communication channels to help prevent the interception of important information such as credit card numbers. Although this service is designed to handle other Internet services, it is primarily used to enable encrypted electronic financial transactions on the World wide Web (WWW). The port for this service can be configured through the Internet Information Services (IIS) Manager snap-in.

System service name: HTTPFilter application protocol port

HTTPS TCP 443

Internet authentication service

The Internet Authentication Service (IAS) performs centralized authentication, authorization, auditing, and accounting for users who are connecting to the network. These users can be on a LAN connection or a remote connection. IAS implements the Internet Engineering Task Force (IETF) standard remote authentication dial-in user service (RADIUS) protocol.

System service name: IAS application protocol port

Old RADIUS UDP 1645

Old RADIUS UDP 1646

RADIUS Billing UDP 1813

RADIUS Authentication UDP 1812

Windows Firewall / Internet connection sharing (ICS)

This system service provides NAT, addressing, and name resolution services for all computers on a home network or small office network. When Internet connection sharing is enabled, your computer becomes a "Internet gateway" on the network, and other client computers can then share an Internet connection, such as a dial-up connection or a broadband connection. This service provides basic DHCP services and DNS services, but it also applies to fully functional Windows DHCP services or DNS services. When ICF and Internet connection sharing act as gateways for other computers on the network, they provide DHCP and DNS services for the private network on the internal network interface. They do not provide these services on externally facing interfaces.

System service name: SharedAccess application protocol port

DHCP Server UDP 67

DNS UDP 53

DNS TCP 53

Kerberos key Distribution Center

When you use the Kerberos key Distribution Center (KDC) system service, users can log in to the network using the Kerberos version 5 authentication protocol. As in other implementations of the Kerberos protocol, KDC is a process that provides two services: an authentication service and a ticket grant service. The authentication service issues ticket-granting tickets, and the ticket-granting service issues tickets for connecting to computers in its own domain.

System service name: kdc application protocol port

Kerberos TCP 88

Kerberos UDP 88

License record

The license record system service is a tool designed to help users manage licenses for Microsoft server products authorized in the server client access license (CAL) model. License records were introduced with Microsoft Windows NT Server 3.51. By default, the license logging service is disabled in Windows Server 2003. Due to the limitations of the original design and the evolution of the terms and conditions of the license agreement, the license record may not provide an accurate view of the total number of CAL purchased compared to the total number of CAL used on a particular server or enterprise-wide. The CAL reported by the license record may conflict with the interpretation of the end user license Agreement (EULA) and the Product right to use (PUR). License records will not be included in future versions of the Windows operating system. Microsoft only recommends that users of the Microsoft Small Business Server family of operating systems enable this service on the server.

System service name: LicenseService application protocol port

NetBIOS Datagram Service UDP 138

NetBIOS session Service TCP 139

SMB TCP 445

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.