Advertisement

Port Checker

Check if ports are open on a host

What is Port Checking?

Port checking is the process of testing whether a specific port on a computer or network device is open and accepting connections. Think of ports as virtual doorways on your computer or server - each one is numbered and dedicated to a specific type of network communication. When you check a port, you're essentially knocking on that door to see if anyone answers.

Ports are essential for network communication because they allow multiple services to run simultaneously on the same IP address. For example, a web server can host websites on port 80 (HTTP) and 443 (HTTPS) while also running an email server on port 25 (SMTP) and a database on port 3306 (MySQL) - all using the same IP address but different ports.

Understanding TCP and UDP Ports

There are two main types of ports used in network communication:

TCP Ports

Transmission Control Protocol (TCP) provides reliable, ordered delivery of data. TCP establishes a connection before transferring data, making it ideal for web browsing, file transfers, and email.

UDP Ports

User Datagram Protocol (UDP) sends data without establishing a connection first. It's faster but less reliable, making it perfect for streaming, gaming, and DNS queries where speed matters more than perfect delivery.

Common Port Numbers

HTTP (80) & HTTPS (443)

The foundation of web browsing. Port 80 handles standard HTTP traffic, while port 443 handles encrypted HTTPS connections. Almost all websites use these ports.

SSH (22)

Secure Shell protocol for encrypted remote server access. System administrators use SSH to securely manage servers and transfer files remotely.

FTP (21)

File Transfer Protocol for uploading and downloading files to/from servers. Commonly used for website maintenance and file sharing.

SMTP (25, 587)

Simple Mail Transfer Protocol for sending email. Port 25 is traditional SMTP, while 587 is used for secure, authenticated email submission.

Database Ports (3306, 5432)

MySQL uses port 3306 and PostgreSQL uses 5432. These ports should typically be firewalled and not publicly accessible for security.

RDP (3389)

Remote Desktop Protocol allows Windows users to remotely control another computer. Commonly used for remote work and server administration.

Why Check Open Ports?

Security Auditing

Identify which ports are exposed to the internet on your network. Open ports can be entry points for attackers, so it's crucial to ensure only necessary ports are accessible.

Firewall Testing

Verify that your firewall rules are working correctly by checking which ports are blocked and which are allowed. Ensure your security configuration matches your expectations.

Troubleshoot Connections

When services aren't accessible, port checking helps diagnose the problem. Determine if the issue is with the service itself, firewall configuration, or network routing.

Verify Server Setup

After configuring a web server, mail server, or other service, confirm it's accessible from the internet by checking if the required ports are open and responding.

Game Server Hosting

Ensure your game server is accessible to other players by verifying the game's ports are open. Different games use different ports for multiplayer connectivity.

Remote Access Setup

Configure remote access solutions like SSH, RDP, or VPN by verifying the necessary ports are open and properly forwarded through your router.

Frequently Asked Questions

What does it mean if a port is open or closed?

An open port means the port is actively listening for incoming connections and will respond to connection attempts. This indicates that a service or application is running on that port and is accessible from the network or internet.

A closed port means the port is not accepting connections. This could be because:

  • No service is running: Nothing is configured to listen on that port
  • Firewall is blocking it: The port is being blocked by firewall rules
  • Port forwarding not configured: The router isn't forwarding traffic to that port
  • Service is stopped: The application using that port isn't currently running

A third state, filtered, means the port check couldn't determine the status, typically because a firewall dropped the packets without responding.

Why can't I connect even though the port shows open?

An open port doesn't guarantee successful connection. Several issues can prevent connectivity:

  • Authentication required: Many services require login credentials or certificates
  • Protocol mismatch: You're using the wrong protocol (e.g., HTTP instead of HTTPS)
  • Service configuration: The service may only accept connections from specific IP addresses
  • SSL/TLS issues: Certificate problems can prevent secure connections
  • Application-level blocking: The software may have additional access controls
  • Intermediate firewalls: Corporate networks or ISPs may block certain traffic

Port checking only verifies network-level accessibility, not application-level functionality or authentication.

What ports should be open on my router?

The general rule is: as few as possible. Only open ports that you specifically need for services you're hosting. Common scenarios include:

  • Web server: Ports 80 (HTTP) and 443 (HTTPS)
  • Game servers: Varies by game (check the game's documentation)
  • Remote access: Port 22 (SSH) or 3389 (RDP) - consider using a VPN instead
  • File server: Ports 21 (FTP) or 445 (SMB) - use SFTP or VPN for better security
  • Email server: Ports 25, 587, 993, 995

For home users not hosting services, ideally no ports should be open. Every open port is a potential security risk. If you need remote access, consider using a VPN which only requires one open port and provides encrypted access to all services.

Is port scanning legal?

Port scanning is legal when performed on systems you own or have explicit permission to test. It's a standard network administration and security practice. However, scanning systems without authorization may be illegal depending on your jurisdiction.

Legal considerations:

  • Your own systems: Completely legal to scan your own servers, websites, and networks
  • With permission: Legal when you have written authorization (penetration testing contracts)
  • Without permission: May violate computer fraud laws (like the CFAA in the US)
  • ISP terms of service: Some ISPs prohibit port scanning in their acceptable use policies

Always obtain explicit permission before scanning systems you don't own. Our tool is designed for checking your own servers or diagnosing your own connection issues.

How do I close an open port?

To close an open port, you have several options depending on your needs:

  • Stop the service: Disable or uninstall the application using that port
  • Configure the firewall: Add a rule to block incoming connections to that port
  • Remove port forwarding: If you configured port forwarding on your router, delete that rule
  • Bind to localhost: Configure the service to only listen on 127.0.0.1 instead of 0.0.0.0

Windows: Use Windows Defender Firewall to create inbound rules blocking specific ports

Linux: Use iptables or ufw to block ports: sudo ufw deny [port]

Router: Log into your router's admin panel and remove port forwarding rules or enable the firewall

After making changes, use our port checker to verify the port is no longer accessible from the internet.

Related Network Tools

What's My IP IP Lookup DNS Lookup WHOIS Lookup Traceroute Blacklist Check
Back to Home
Advertisement
An unhandled error has occurred. Reload

Rejoining the server...

Rejoin failed... trying again in seconds.

Failed to rejoin.
Please retry or reload the page.

The session has been paused by the server.

Failed to resume the session.
Please reload the page.