Network ports are entry points that allow servers or workstations connected to the Internet to communicate with clients. Services listening on these ports receive data, process it, and send responses back. However, open ports can also be exploited by malicious clients to gain access to sensitive data or execute harmful code remotely.
What Is the Port Scan Feature?
The Port Scan feature checks a target device for commonly used open ports. Results are displayed on the device’s button in the Wired Analysis screen.
To view port scan results:
- Expand the device’s button on the Wired Analysis screen.
How to Use the Port Scan Feature
- Run AutoTest.
- Tap the Wired Analysis icon on the Home screen.
- Tap a device’s button to expand it.
- Tap the Wired Tools button.
- Tap Port Scan.
What Ports Are Scanned?
The OneTouch AT scans a predefined list of ports during the PortScan process. It does not scan all ports to avoid triggering IDS/IPS systems. Common ports scanned include:
- FTP (20, 21)
- SSH (22)
- Telnet (23)
- SMTP (25)
- HTTP (80)
- HTTPS (443)
- SNMP (161, 162)
- SQL (1433, 1434)
- MySQL (3306)
- RDP (3389)
- PostgreSQL (5432)
- VNC (5900)
- And many others including ports for LDAP, Kerberos, Oracle DB, and more.
(Full port list available in the user guide.)
Why Port Scanning Matters
Port scanning helps identify potential vulnerabilities and ensures that only necessary services are accessible. This is critical for network security and performance optimization.
| 7 | echo | 554 | rtsp | |
| 9 | discard | 556 | remotefs | |
| 11 | systat | 585 | imap | |
| 13 | daytime | 634 | ginad | |
| 17 | qotd | 636 | ldaps | |
| 18 | msp | 666 | doom | |
| 19 | chargen | 749 | kerberos-adm | |
| 20 | ftp-data | 762 | quotad | |
| 21 | ftp | 892 | ||
| 22 | ssh | 901 | snmpnameres | |
| 23 | telnet | 902 | vmware-console | |
| 25 | smtp | 912 | apex-mesh | |
| 37 | time | 993 | imaps | |
| 38 | rap | 995 | pop3s | |
| 39 | rlp | 1025 | microsoft-adl | |
| 43 | nicname | 1080 | socks | |
| 49 | tacacs | 1155 | nfa | |
| 53 | domain | 1366 | netware-csp | |
| 66 | sql-net | 1417 | timbuktu-srv1 | |
| 67 | bootps | 1433 | ms-sql-s | |
| 68 | bootpc | 1434 | ms-sql-m | |
| 70 | gopher | 1498 | sybase-sqlany | |
| 79 | finger | 1521 | oracle-db | |
| 80 | http | 1524 | ingreslock | |
| 88 | kerberos | 1525 | orasrv | |
| 107 | rtelnet | 1720 | h323hostcall | |
| 110 | pop3 | 1723 | pptp | |
| 111 | sunrpc | 1812 | radius | |
| 113 | ident | 1813 | radius-acct | |
| 118 | sqlserv | 2000-2002 | cisco-sccp | |
| 123 | ntp | 2049 | nfs | |
| 135 | epmap | 3128 | ndl-aas | |
| 137 | netbios-ns | 3268 | msft-gc | |
| 138 | netbios-dgm | 3269 | msft-gc-ssl | |
| 139 | netbios-ssn | 3306 | mysql | |
| 143 | imap | 3389 | ms-wbt-server | |
| 156 | sqlsrv | 4400 | ds-srv | |
| 161 | snmp | 4488 | awacs-ice | |
| 162 | snmptrap | 4672 | rfa | |
| 204 | at-echo | 4899 | radmin-port | |
| 379 | ldap | 5190 | aol | |
| 389 | ldap | 5432 | postgresql | |
| 390 | ldap | 6000-6004 | ms-exchange | |
| 427 | svrloc | 6005 | x11 | |
| 443 | https | 8001 | http-alt | |
| 445 | microsoft-ds | 8080 | http-alt | |
| 465 | urd | 8443 | pcsync-https | |
| 512 | exec | 12345 | italk | |
| 513 | login | 50000 | db2-server-old | |
| 514 | shell | 60000 | db2-server | |
| 515 | printer | 62078 | iphone-sync | |
| 519 | utime |