Skip to end of metadata
Go to start of metadata

A reference list of standard ports:

Service

Protocol
Port(s)
Comment

Standard FTP

TCP
21

Standard port for active FTP.
Note also that opening FTP to the world is a potential security hole.  We suggest specifying source IP addresses (rather than "any") in your firewall rules.

Passive FTP

TCP
21, 40000–41000

Note that except for port 21 you need a range of higher ports between 1024 and 65535 to be opened. (In AppNexus we suggest 40000–41000, as our hardware is already configured to use these ports.)

SSH

TCP
22

(Secure Shell)  Used for secure logins, file transfers (SCP, SFTP), and port forwarding.
For security reasons, we recommend granting SSH access for one or two "jump" boxes only and using these boxes for SSH connection to all other servers.

SMTP

TCP
25

(Simple Mail Transfer Protocol)

HTTP

TCP
80, 8080, 8000

Standard ports for HTTP access.  TCP port 8000 is usually used for HTTP access or HTTP tunneling.  HTTP traffic to ports above 8000 should be funneled through LB pools.  (See also Configuring Local Load Balancing).

SNMP

TCP, UDP
161, 162

SNMP, SNMPTRAP (Simple Network Management Protocol).
(warning) Note that it's not enough to open 161 port via manage-vlan, as we need to "make a hole" on our borders as well. Please, open a Support ticket, requesting the task.

LDAP

TCP
389

(Lightweight Directory Access Protocol)

HTTPS

TCP
443

(Hypertext Transfer Protocol over TLS/SS)

RMI registry

TCP,
UDP
1099

Java RMI registry
(Remote Method Invocation)

MySQL

TCP
3306

Note that opening a MySQL port to the world is a potential security hole.  We suggest specifying exact source IPs.

HTTP proxy

TCP
3128

One of the most popular ports for HTTP proxy, although not the only one.

Nagios

TCP
5666

(NRPE)

netscape-adm

TCP
8649

(Netscape Web Server Admin Management)

  • No labels