List of all ports used by the ad Domain Controller

List of all ports used by the ad Domain Controller

: Lol

Port Protocol Application Program Protocol system service name
N/a gre (IP Protocol 47) Routing and Remote Access
N/a esp IPSec ESP (IP protocol 50) Routing and Remote Access
N/A Ah ipsec ah (IP Protocol 51) Routing and Remote Access
7. TCP echo Simple TCP/IP Service
7 udp echo Simple TCP/IP Service
9 TCP discard Simple TCP/IP Service
9 UDP discard Simple TCP/IP Service
13 TCP daytime Simple TCP/IP Service
13 UDP daytime Simple TCP/IP Service
17 TCP quotd Simple TCP/IP Service
17 UDP quotd Simple TCP/IP Service
19 TCP chargen Simple TCP/IP Service
19 UDP chargen Simple TCP/IP Service
20 tcp ftp default data FTP Publishing Service
21 tcp ftp control FTP Publishing Service
21 tcp ftp Control Application Layer Gateway Service
23 TCP Telnet
25 tcp smtp Simple Mail transmission protocol
25 udp smtp Simple Mail transmission protocol
25 tcp smtp Exchange Server
25 udp smtp Exchange Server
42 tcp wins replication Windows Internet Name Service
42 UDP wins copy Windows Internet Name Service
53. tcp dns Server
53 udp dns Server
53 tcp dns Windows Firewall/Internet Connection Sharing
53 udp dns Windows Firewall/Internet Connection Sharing
67 udp dhcp server
67 udp dhcp server Windows Firewall/Internet Connection Sharing
69 udp tftp common FTP background program service
80 tcp http Windows Media Service
80 tcp http Web Publishing Service
80 tcp http SharePoint Portal Server
88 TCP Kerberos Key Distribution Center
88 UDP Kerberos Key Distribution Center
102 TCP x.400 Microsoft Exchange MTA Stack
110 TCP POP3 Microsoft POP3 Service
110 TCP POP3 Exchange Server
119 tcp nntp network news transmission protocol
123 udp ntp Windows Time
123 udp sntp Windows Time
135 tcp rpc message queue
135 tcp rpc Remote Procedure Call
135 tcp rpc Exchange Server
135 tcp rpc Certificate Service
135 tcp rpc cluster service
135 tcp rpc Distributed File System
135 tcp rpc Distributed Link Tracking
135 tcp rpc distributed transaction processing Coordinator
135 tcp rpc Event Log
135 tcp rpc Fax Service
135 tcp rpc File Replication
135 tcp rpc local security organization
135 tcp rpc Remote Storage Notification
135 tcp rpc Remote Storage Server
135 tcp rpc Systems Management Server 2.0
135 tcp rpc Terminal Service Authorization
135 tcp rpc Terminal Service Session Directory
137 UDP NetBIOS name resolution Computer Browser
137 UDP NetBIOS name resolution Server
137 UDP NetBIOS name resolution Windows Internet Name Service
137 UDP NetBIOS name resolution Net Logon
137 UDP NetBIOS name resolution Systems Management Server 2.0
138 UDP NetBIOS datagram service Computer Browser
138 UDP NetBIOS datagram service messenger
138 UDP NetBIOS datagram Service Server
138 UDP NetBIOS datagram Service Net Logon
138 UDP NetBIOS datagram service Distributed File System
138 UDP NetBIOS datagram Service Systems Management Server 2.0
138 UDP NetBIOS datagram Service License Record Service
139 TCP NetBIOS session service Computer Browser
139 TCP NetBIOS session service Fax Service
139 TCP NetBIOS Session Service Performance Logs and alarms
139 TCP NetBIOS Session Service background Printing Program
139 TCP NetBIOS Session Service Server
139 TCP NetBIOS Session Service Net Logon
139 TCP NetBIOS Session Service Remote process call Locator
139 TCP NetBIOS session service Distributed File System
139 TCP NetBIOS Session Service Systems Management Server 2.0
139 TCP NetBIOS Session Service License Record Service
143 tcp imap Exchange Server
161 UDP SNMP
162 udp snmp Trap outbound SNMP Trap Service
389 Local Security Organization of the tcp ldap Server
389 Local Security Organization of udp ldap Server
389 Distributed File System of tcp ldap Server
389 udp ldap Server Distributed File System
443 TCP HTTPS HTTP SSL
443 tcp https Web Publishing Service
443 tcp https SharePoint Portal Server
445 tcp smb Fax Service
445 tcp smb background Printing Program
445 tcp smb server
445 tcp smb Remote process call Locator
445 tcp smb Distributed File System
445 tcp smb license Record Service
445 tcp smb Net Logon
500 UDP IPSec ISAKMP local security organization
515 tcp lpd TCP/IP Printing Server
548 TCP Macintosh File Server
554 tcp rtsp Windows Media Service
563 tcp nntp over SSL network news transmission protocol
593 remote rpc process call over TCP HTTP
593 RPC Exchange server over TCP HTTP
636 tcp ldap ssl local security organization
636 udp ldap ssl local security organization
993 IMAP Exchange server on TCP SSL
995 POP3 Exchange server on TCP SSL
1270 TCP mom-encrypted Microsoft Operations Manager 2000
1433 SQL Microsoft SQL server over TCP
1433 SQL MsSQL on TCP $ UDDI
1434 udp SQL probe Microsoft SQL Server
1434 udp SQL probe MSSQL $ UDDI
1645 UDP legacy radius Internet Authentication Service
1646 UDP legacy radius Internet Authentication Service
1701 UDP L2TP Routing and Remote Access
1723 tcp pptp Routing and Remote Access
1755 tcp mms Windows Media Service
1755 udp mms Windows Media Service
1801 tcp msmq Message Queue
1801 udp msmq Message Queue
1812 udp radius Authentication Internet Authentication Service
1813 udp radius accounting Internet Authentication Service
1900 udp ssdp Discovery Service
2101 tcp msmq-DCS Message Queue
2103 TCP MSMQ-RPC Message Queue
2105 TCP MSMQ-RPC Message Queue
2107 tcp msmq-mgmt Message Queue
2393 tcp olap services 7.0 SQL SERVER: supported by lower-level OLAP clients
2394 tcp olap services 7.0 SQL SERVER: supported by lower-level OLAP clients
2460 udp ms theater Windows Media Service
2535 UDP madcap DHCP server
2701 tcp sms remote control (control) SMS Remote Control proxy
2701 udp sms remote control (control) SMS Remote Control proxy
2702 tcp sms Remote Control (data) SMS Remote Control proxy
2702 udp sms Remote Control (data) SMS Remote Control proxy
2703 tcp sms remote chat SMS Remote Control proxy
2703 upd sms remote chat SMS Remote Control proxy
2704 tcp sms Remote File Transfer SMS Remote Control proxy
2704 udp sms Remote File Transfer SMS Remote Control proxy
2725 tcp SQL Analysis Service SQL Analysis Server
2869 TCP UPnP General plug-and-play Device Host
2869 tcp ssdp Event Notification SSDP Discovery Service
3268 Local Security Organization of TCP Global Catalog server
3269 Local Security Organization of TCP Global Catalog server
3343 UDP cluster service
3389 TCP Terminal Service NetMeeting Remote Desktop Sharing
3389 TCP Terminal Service
3527 udp msmq-ping Message Queue
4011 Remote Installation of UDP binl
4500 UDP NAT-T local security organization
5000 tcp ssdp old Event Notification SSDP Discovery Service
5004 udp rtp Windows Media Service
5005 udp rtcp Windows Media Service
42424 tcp asp. NET session Status ASP. NET Status Service
51515 TCP mom-clear Microsoft Operations Manager 2000
The "System Service port" section in this article contains a brief description of each service, displays the logical name of the service, and points out the ports and protocols required for each service to perform correct operations. This section helps identify the ports and protocols used by specific services.
The "port and Protocol" section in this article includes a table that summarizes the information in the "System Service port" section. This table is sorted by port number, rather than by service name. You can use this section to quickly determine which services are listening for specific ports.
This article uses specific methods in terms of use. To avoid confusion, make sure you understand the methods used in this article. The following table describes these terms:
System Service: Windows Server systems include many products, such as the Microsoft Windows Server 2003 series, Microsoft Exchange 2000 Server, and Microsoft SQL Server 2000. All these products include many components, and system services are one of these components. System services required by a specific computer, or automatically started by the operating system during startup, or as needed during a typical operation. For example, on a computer running Windows Server 2003 Enterprise Edition, some available system services include server services, background print program services, and World Wide Web Publishing Services. Each system service has a memorable service name and a service name. Note that the service name appears in the graphical management tool (such as the "service" Microsoft Management Console (MMC) Management Unit. The service name is the name used for the command line tool and many script languages. Each system service can provide one or more network services.
Application Protocol: in this article, Application Protocol refers to an advanced network protocol that uses one or more TCP/IP protocols and ports. Application Protocol instances include Hypertext Transfer Protocol (HTTP), Server Message Block (SMB), and Simple Mail Transfer Protocol (SMTP ).
Protocol: the TCP/IP protocol runs at a level lower than the application protocol. It is a standard format for communication between devices on the network. The TCP/IP protocol suite includes TCP, User Datagram Protocol (UDP), and Internet Control Message Protocol (ICMP ).
Port: This is the network port through which the system service listens for incoming network communication.
This document does not specify which services depend on other services for network communication. For example, many services depend on the Remote Procedure Call (RPC) function in Microsoft Windows or the DCOM function to assign dynamic TCP ports to them. The Remote Procedure Call Service coordinates requests through other system services that use RPC or DCOM to communicate with customers' computers. Many other services depend on the basic network input/output system (NetBIOS), SMB, and Protocols (actually provided by server services ). Other services depend on HTTP or Secure Hypertext Transfer Protocol (https ). These protocols are provided by Internet Information Service (IIS. The complete discussion of the Windows operating system infrastructure is beyond the scope of this article. However, you can get detailed documentation on this topic on Microsoft technet and Microsoft Developer Network (msdn. Although many services may depend on a specific TCP port or UDP port, only one service or process can actively listen on this port at any time.

When RPC is used with TCP/IP or UDP/IP for transmission, the inbound port is often allocated to the System Service dynamically as needed; use TCP/IP and UDP/IP Ports higher than port 1024. These ports are often abbreviated as random RPC ports ". In these cases, the RPC client relies on the RPC end point er to notify them which (some) dynamic ports are allocated to the server. For some RPC-based services, you can configure a specific port instead of letting RPC dynamically allocate the port. In addition, no matter what service, the port range dynamically allocated by RPC can be limited to a small range. For more information about this topic, see the reference section in this article.

This article contains information about the system service roles and server roles of Microsoft products listed in the "apply to" section at the end of this article. Although this information may also apply to Microsoft Windows XP and Microsoft Windows 2000 Professional, This article focuses on server-class operating systems. Therefore, this article introduces the listening port of the service, instead of the port that the client program uses to connect to the remote system.

Back to Top
System Service port
This section describes each system service, including the logical name corresponding to the system service, and displays the ports and protocols required for each service.
Application Layer Gateway Service
This sub-component of the Internet Connection Sharing (ICS)/Windows Firewall Service supports plug-ins that allow network protocols to work after the firewall and Internet Connection Sharing. The Application Layer Gateway (ALG) Plug-in can open the port and change the data embedded in the packet (such as the port and IP address ). File Transfer Protocol (FTP) is the only network protocol with a plug-in that comes with Windows Server 2003 Standard Edition and Windows Server 2003 Enterprise Edition. The alg ftp plug-in is designed to support active FTP sessions through the Network Address Translation (NAT) engine used by these components. The alg ftp plug-in supports these sessions by redirecting all traffic through NAT and the traffic sent to port 21 of the dedicated listening port ranging from 3000 to 5000 on the loopback adapter. The alg ftp plug-in then monitors and updates the FTP control channel traffic so that the FTP plug-in can use the NAT forwarding port ing of the FTP data channel. The FTP plug-in also updates the port in the FTP Control CHannel stream.

System Service name: ALG application protocol port
FTP control tcp 21

ASP. NET Status Service
ASP. NET Status Service supports the non-process session Status of ASP. NET. ASP. NET Status Service stores session data outside the process. This service uses a socket to communicate with ASP. Net Running on the Web server.

System Service name: aspnet_state application protocol port
ASP. NET session Status, TCP 42424

Certificate Service
Certificate Service is part of the core operating system. With the Certificate Service, an enterprise can act as its own certificate authority (CA ). In this way, enterprises can issue and manage programs and protocols (such as secure/multi-purpose Internet Mail Extensions (S/MIME), Secure Sockets Layer (SSL), and encrypted file systems (EFS), IPSec, and smart card logon. The Certificate Service uses random TCP ports higher than port 1024 and relies on RPC and DCOM to communicate with the client.

System Service name: certsvc application protocol port
RPC TCP/IP 135
Randomly assigned high TCP port tcp random port number

Cluster Service
The "cluster" Service controls server cluster operations and manages cluster databases. A cluster is a collection of independent computers that act as a single computer. Administrators, programmers, and users regard a cluster as a system. The software distributes data between cluster nodes. If one node fails, other nodes will provide services and data originally provided by the lost node. After a node is added or repaired, the cluster software migrates some data to the node.

System Service name: clussvc application protocol port
Cluster service UDP 3343
RPC TCP/IP 135
Randomly assigned high TCP port tcp random port number

Computer Browser
The "Computer Browser" System Service maintains the latest computer list on the network and provides this list at the request of the program. Windows-based computers use the "Computer Browser" service to view network domains and resources. The computer that is specified as the browser maintains the browsing list, which contains all the shared resources used on the network. Early versions of Windows programs (such as "Network neighbors", net view commands, and Windows Resource Manager) require browsing. For example, if you open "Network Neighbor" on a computer running Microsoft Windows 95, a list of domains and computers appears. To display this list, the computer obtains a copy of the browsing list from the computer designated as the browser.

System Service name: browser application protocol port
NetBIOS datagram service UDP 138
NetBIOS name resolution UDP 137
NetBIOS session service tcp 139

DHCP server
The "DHCP server" Service uses the Dynamic Host Configuration Protocol (DHCP) to automatically allocate IP addresses. With this service, you can adjust the advanced network settings of the DHCP client. For example, you can configure network settings such as Domain Name System (DNS) servers and Windows Internet Name Service (WINS) servers. One or more DHCP servers can be created to maintain TCP/IP configuration information and provide this information to the customer's computer.

System Service name: dhcpserver application protocol port
DHCP server UDP 67
Madcap UDP 2535

Distributed File System
The DFS Service manages logical volumes distributed over a LAN or WAN, which is required for Microsoft Active Directory Service sysvol sharing. DFS is a distributed service that integrates different file sharing into a logical namespace.

System Service name: DFS application protocol port
NetBIOS datagram service UDP 138
NetBIOS session service tcp 139
The LDAP server TCP 389
LDAP server UDP 389
Smb tcp 445
RPC TCP/IP 135
Randomly assigned high TCP port tcp random port number

Distributed Link tracing Server
The "Distributed Link tracing server" system stores service information so that files moved between volumes can track each volume in the domain. The "Distributed Link tracing server" service runs on all domain controllers in a domain. This service enables the Distributed Link tracing Server Client Service to track link documents that have been moved to a location in another NTFS file system in the same domain.

System Service name: TrkSvr application protocol port
RPC TCP/IP 135
Randomly assigned high TCP port tcp random port number

Distributed Transaction Processing Coordinator
The Distributed Transaction Processing Coordinator (DTC) System Service is responsible for coordinating transactions distributed across computer systems and resource managers, such as databases, message queues, file systems, and other transaction protection resource managers. If the transaction component is configured through COM +, the DTC system service is required. The transaction queue and SQL server running in Message Queue (MSMQ) across multiple systems also require the DTC System Service.

System Service name: MSDTC application protocol port
RPC TCP/IP 135
Randomly assigned high TCP port tcp random port number

DNS Server
The "DNS server" service enables DNS name resolution by responding to query and update requests for DNS names. The DNS server is required to find the devices and services that use the DNS identifier and to search for domain controllers in Active Directory.

System Service name: DNS application protocol port
Dns udp 53
Dns tcp 53

Event Log
"Event Log" system service records event messages generated by programs and Windows operating systems. The event log report contains useful information for problem diagnosis. View the report in the event viewer. Event Log Service writes events sent by programs, services, and operating systems to log files. These events not only contain errors specific to source programs, services, or components, but also contain diagnostic information. Logs can be viewed programmatically through the event log API or the event viewer in the MMC Management Unit.

System Service name: EventLog application protocol port
RPC TCP/IP 135
Randomly assigned high TCP port tcp random port number

Exchange Server
Microsoft Exchange Server includes several system services. When an mapi client (such as Microsoft Outlook) is connected to the Exchange Server, the client first connects to the RPC end point Er (RPC Locator Service) on TCP port 135 ). The RPC Endpoint er tells the client which ports are used to connect to the Exchange Server service. These ports are dynamically allocated. Microsoft Exchange Server 5.5 uses two ports: one for information storage and the other for directories. Microsoft Exchange 2000 Server and Microsoft Exchange Server 2003 use three ports: one for information storage and two for system assistant. By using RPC over HTTP, you can also use Microsoft Office Outlook 2003 to connect to the server running Exchange Server 2003. The Exchange Server also supports other protocols, such as SMTP, Post Office Protocol 3 (POP3), and IMAP.

Application Protocol Port
The imap tcp 143
Imap tcp 993 on SSL
POP3 TCP 110
POP3 TCP 995 on SSL
Randomly assigned high TCP port tcp random port number
RPC TCP/IP 135
Rpc tcp 593 over HTTP
Smtp tcp 25
Smtp udp 25

Fax Service
The fax service is a system service that complies with Telephony API (TAPI) and provides the fax function. With the fax service, you can use a local fax device or a shared network fax device to send and receive faxes from their desktop programs.

System Service name: Fax application protocol port
NetBIOS session service tcp 139
RPC TCP/IP 135
Randomly assigned high TCP port tcp random port number
Smb tcp 445

File Replication
The file replication service (FR) allows automatic file copy and maintenance on many servers at the same time. WordPress is an automatic file replication service in Windows 2000 and Windows Server 2003. Its function is to copy sysvol shares to all domain controllers. In addition, you can configure the WordPress to copy files between the standby targets associated with the fault-tolerant DFS.

System Service name: ntfr application protocol port
RPC TCP/IP 135
Randomly assigned high TCP port tcp random port number

Macintosh File Server
With the "Macintosh file server" System Service, users of Macintosh computers can store and access files on computers running Windows Server 2003. If this service is disabled or disabled, the Macintosh client cannot access or store files on this computer.

System Service name: MacFile application protocol port
The Macintosh File Server TCP 548

FTP Publishing Service
The FTP Publishing Service provides FTP connections. By default, the FTP control port is 21. However, you can configure this system service through the Internet Information Service (IIS) manager. The default data port (the port used by FTP in active mode) is automatically set to a port lower than the control port. Therefore, if you set the control port to port 4131, the default data port is port 4130. Most FTP clients use the passive mode FTP. This means that the client initially uses the control port to connect to the FTP server. the FTP server allocates a high TCP port between 1025 and 5000, and then the client opens another FTP server connection to transmit data. You can use the IIS metadatabase to configure the high port range.

System Service name: msftpsvc application protocol port
FTP control tcp 21
Default FTP data TCP 20
Randomly assigned high TCP port tcp random port number

HTTP SSL
The http ssl system service enables IIS to perform the SSL function. SSL is an open standard used to establish encrypted communication channels to help prevent interception of important information (such as credit card numbers ). Although this service is intended to handle other Internet services, it is mainly used to enable encrypted electronic financial transactions on the World Wide Web (WWW. You can use the Internet Information Service (IIS) manager to configure the port used for this service.

System Service name: httpfilter application protocol port
Https tcp 443

Internet Authentication Service
Internet Authentication Service (IAS) performs centralized authentication, authorization, audit, and accounting for users connected to the network. These users can be connected over a LAN or remotely. IAS implements the Internet Engineering Task Group (IETF) Standard remote Identity Authentication Dial-In User Service (RADIUS) protocol.

System Service name: IAS application protocol port
Legacy radius UDP 1645
Legacy radius UDP 1646
Radius UDP 1813
RADIUS Authentication UDP 1812

Windows Firewall/Internet Connection Sharing (ICS)
This system service provides Nat, addressing, and name resolution services for all computers on the home network or small office network. When Internet Connection Sharing is enabled, your computer becomes an "Internet gateway" on the network, and other client computers can share an Internet connection, such as a dial-up connection or broadband connection. This service provides basic DHCP and DNS services, but it also applies to fully functional Windows Dhcp or DNS services. When the ICF and Internet connection share act as the gateway of other computers on the network, they provide DHCP and DNS services for the private network on the internal network interface. They do not provide these services on external interfaces.

System Service name: sharedaccess application protocol port
DHCP server UDP 67
Dns udp 53
Dns tcp 53

Kerberos Key Distribution Center
When you use the Kerberos Key Distribution Center (kdc) system service, you can use Kerberos version 5 authentication protocol to log on to the network. Like other Kerberos implementations, KDC is a process that provides two services: the authentication service and the ticket granting service. The authentication service issues a ticket to authorize the service to issue a ticket to connect to a computer in its own domain.

System Service name: KDC application protocol port
Kerberos TCP 88
Kerberos UDP 88

License history
The license record system service is a tool designed to help users manage the licenses for Microsoft Server products authorized in the Server Client Access License (CAL) model. License records are introduced with Microsoft Windows NT Server 3.51. By default, the "License record" service is disabled in Windows Server 2003. Due to restrictions of the original design and the development of the terms and conditions of the license agreement, license records may not provide a precise view of the total number of purchased CALS compared to the total number of CALS used on a specific server or within the enterprise. The cal reported by the license record may conflict with the interpretation of the "End User License Agreement (EULA)" and the "product right to use (PUR. License records will not be included in future Windows versions. Microsoft only recommends that users of Microsoft Small Business Server series operating systems enable this service on the server.

System Service name: LicenseService application protocol port
NetBIOS datagram service UDP 138
NetBIOS session service tcp 139
Smb tcp 445