Well known TCP and UDP ports used by Apple software products

3/4/11 11:50 AM

Well known TCP and UDP ports used by Apple software products
Last Modified: December 07, 2010 Article: TS1629 Old Article: 106439

Symptoms
Learn more about TCP and UDP ports used by Apple products, such as Mac OS X, Mac OS X Server, AppleShare IP, Network Assistant, Apple Remote Desktop, Macintosh Manager, and MobileMe. Many of these are referred to as "well known" industry standard ports. Note: Mac OS X v10.5 and later includes the Application Firewall, which is different from a port-based firewall.

Products Affected Mac OS X 10.0, Mac OS X 10.3, Mac OS X 10.2, Mac OS X 10.1, Xserve, Mac OS X 10.5, Mac OS X Server, Internet, Mac OS X 10.4, Mac OS X 10.6, iPhone 4, MobileMe

Resolution About this table

The Service or Protocol Name column lists services registered with the Internet Assigned Numbers Authority (http://www.iana.org/), except where noted as "unregistered use." The names of Apple products that use these services or protocols appear in the Used By/Additional Information column. The RFC column lists the number of the Request For Comment document that defines the particular service or protocol, which may be used for reference. RFC documents are maintained by RFC Editor (http://www.rfceditor.org/). If multiple RFCs define a protocol, there may only be one listed here. This article is updated periodically and contains information that is available at time of publication. This document is intended as a quick reference and should not be regarded as comprehensive. Apple products listed in the table are the most commonly used examples, not a comprehensive list. For more information, review the Notes below the table. Tip: Some services may use two or more ports. It is recommend that once you've found an instance of a product in this list, search on the name (Command-F) and then repeat (Command-G) to locate all occurrences of the product. For example, VPN service may use up to four different ports: 500, 1701, 1723, and 4500. Tip: Some firewalls allow selective configuration of UDP or TCP ports with the same number, so it can be important to note which type of port is to be configured. For example, NFS may use either or both TCP 2049 and UDP 2049 ports. If your firewall doesn't allow you to specify, making changes to a port probably affects both. Port TCP or UDP
TCP/UDP TCP TCP TCP

Service or Protocol Name

echo File Transport Protocol (FTP) FTP control Secure Shell (SSH)

RFC

Used by / Additional information

7 20 21 22

792 959 959 4250 4254

23 25

TCP TCP

Telnet Simple Mail Transfer Protocol (SMTP)

854 5321

Mail (for sending email); MobileMe Mail (sending)

53 67

TCP/UDP UDP

Domain Name System (DNS) Bootstrap Protocol Server (BootP, bootps)

1034 951

MacDNS, FaceTime NetBoot via DHCP

68

UDP

Bootstrap Protocol Client (bootpc)

951

NetBoot via DHCP

69

UDP

Trivial File Transfer Protocol (TFTP)

1350

http://support.apple.com/kb/ts1629

Page 1 of 6

Well known TCP and UDP ports used by Apple software products

3/4/11 11:50 AM

79 80

TCP TCP

Finger Hypertext Transfer Protocol (HTTP)

1288 2616

World Wide Web, MobileMe, Sherlock, QuickTime Installer, iTunes Store and Radio, Software Update, RAID Admin, Backup, iCal calendar publishing, iWeb, MobileMe Web Gallery Publishing, WebDAV (iDisk), Final Cut Server, AirTunes/AirPlay

88 106

TCP TCP

Kerberos Password Server (Unregistered Use)

4120 -

Mac OS X Server Password Server

110

TCP

Post Office Protocol (POP3) Authenticated Post Office Protocol (APOP)

1939

Mail (for receiving email)

111

TCP/UDP

Remote Procedure Call (RPC)

1057, 1831

Portmap (sunrpc)

113 115

TCP TCP

Identification Protocol Secure File Transfer Program (SFTP)

1413 913

Note: Some authorities reference a "Simple File Transport Protocol" or "Secured File Transport Protocol" on this port.

119

TCP

Network News Transfer Protocol (NNTP)

3977

Used by applications that read newsgroups.

123

TCP/UDP

Network Time Protocol (NTP)

1305

Date & Time preferences. Used for network time server synchronization, AppleTV Network Time Server Sync

137

UDP

Windows Internet Naming Service (WINS)

138 139

UDP TCP

NETBIOS Datagram Service Server Message Block (SMB)

Windows Datagram Service, Windows Network Neighborhood Used by Microsoft Windows file and print services, such as Windows Sharing in Mac OS X.

143

TCP

Internet Message Access Protocol (IMAP)

3501

Mail (for receiving email); MobileMe Mail (IMAP)

161

UDP

Simple Network Management Protocol (SNMP)

1157

192

UDP

AirPort Base Station PPP status or discovery (certain configurations), AirPort Admin Utility, AirPort Express Assistant

311

TCP

Server Admin, Workgroup Manager, Server Monitor, Xsan Admin

Remote server administration

389

TCP

Lightweight Directory Access Protocol (LDAP)

4511

Used by applications that look up addresses, such as Mail and Address Book. Network Browser Secured websites, iTunes Store, FaceTime, Game Center, MobileMe (authentication, iDisk, iDisk Sync, and MobileMe Sync), AirTunes/AirPlay

427 443

TCP/UDP TCP

Service Location Protocol (SLP) 2608 Secure Sockets Layer (SSL, or "HTTPS") -

445 497 500

TCP TCP/UDP UDP

Microsoft SMB Domain Server Dantz Retrospect ISAKMP/IKE

Mac OS X Server VPN service, Back to My Mac (MobileMe, Mac OS X v10.5 or later).

514 514 515

TCP UDP TCP

shell Syslog Line Printer (LPR), Line Printer Daemon (LPD)

Used for printing to a network printer, Printer Sharing in Mac OS X.

532 548

TCP TCP

netnews Apple Filing Protocol (AFP) over TCP

AppleShare, Personal File Sharing, Apple File Service

554

TCP/UDP

Real Time Streaming Protocol (RTSP)

2326

QuickTime Streaming Server (QTSS), streaming media players, AirTunes/AirPlay

587

TCP

Message Submission for Mail (Authenticated SMTP)

4409

Mail (for sending mail), MobileMe Mail (SMTP authentication)

http://support.apple.com/kb/ts1629

Page 2 of 6

Well known TCP and UDP ports used by Apple software products
600-1023 623 TCP/UDP UDP Mac OS X RPC-based services Lights-Out-Monitoring Used by NetInfo, for example. Used by Intel Xserves' Lights-Out-Monitoring (LOM) feature; used by Server Monitor 625 TCP Directory Service Proxy (DSProxy) (Unregistered Use) 626 TCP AppleShare Imap Admin (ASIA) 626 UDP serialnumberd (Unregistered Use) 631 636 660 TCP TCP TCP Internet Printing Protocol (IPP) Secure LDAP MacOS Server Admin 2910 DirectoryService, Open Directory Assistant, Workgroup Manager. Note: This port is registered to DEC DLM. IMAP Administration (Mac OS X Server 10.2.8 or earlier, AppleShare IP 6) Server serial number registration (Xsan, Mac OS X Server 10.3 and later) Mac OS X Printer Sharing Server Admin (both AppleShare IP and Mac OS X Server), Server Settings 687 749 985 993 995 1085 1099 & 8043 1220 1649 1701 1723 2049 TCP TCP UDP TCP TCP/UDP TCP TCP/UDP TCP TCP TCP/UDP TCP/UDP TCP Add server Admin to uses Kerberos 5 admin/changepw NetInfo Static Port Mail IMAP SSL Mail POP SSL WebObjects Remote RMI and IIOP Acess to JBOSS QT Server Admin IP Failover L2TP PPTP Network File System (NFS) (version 3) 2236 TCP Macintosh Manager (Unregistered Use) 2336 3004 3031 3283 3306 34783497 3632 3659 TCP TCP/UDP Distributed compiler Simple Authentication and Security Layer (SASL) 3689 TCP Digital Audio Access Protocol (DAAP) 4080 4111 4398 4500 TCP TCP UDP UDP IKE NAT Traversal XGrid Game Center Mac OS X Server VPN service, Back to My Mac (MobileMe, Mac OS X v10.5 or later). Note: VPN and MobileMe are mutually exclusive when configured through an Apple access point (such as an AirPort Base Station); MobileMe will take precedence. iTunes Music Sharing, AirTunes/AirPlay Mac OS X Server Password Server TCP TCP TCP/UDP TCP/UDP TCP UDP Portable Home Directories iSync Remote AppleEvents Net Assistant MySQL Program Linking, Remote Apple Events Apple Remote Desktop 2.0 or later (Reporting feature) FaceTime, Game Center Macintosh Manager 1094 Used for administration of QuickTime Streaming Server. Mac OS X Server VPN service Mac OS X Server VPN service MobileMe Mail (SSL IMAP) -

3/4/11 11:50 AM

4915265535 5003

TCP

Xsan

Xsan Filesystem Access

TCP

FileMaker - name binding

http://support.apple.com/kb/ts1629

Page 3 of 6

Well known TCP and UDP ports used by Apple software products
and transport 5009 5060 TCP UDP (Unregistered Use) Session Initiation Protocol (SIP) 5100 5190 5222 5223 TCP TCP/UDP TCP TCP America Online (AOL) XMPP (Jabber) XMPP over SSL, Apple Push Notification Service 5269 TCP XMPP server-to-server communication 5297 5298 5353 5354 5432 5678 TCP TCP/UDP UDP TCP TCP UDP Multicast DNS (MDNS) Multicast DNS Responder ARD 2.0 Database SNATMAP server iChat (local traffic), Bonjour iChat (local traffic), Bonjour Bonjour (mDNSResponder), AirTunes/AirPlay Back to My Mac The SNATMAP service on port 5678 is used to determine the external Internet address of hosts so that connections between iChat users can properly function behind network address translation (NAT). The SNATMAP service simply communicates to clients the Internet address that connected to it. This service runs on an Apple server, but does not send personal information to Apple. When certain iChat AV features are used, this service will be contacted. Blocking this service may cause issues with iChat AV connections with hosts on networks that use NAT. 58975898 5900 TCP Virtual Network Computing (VNC) (Unregistered Use) 5988 TCP WBEM HTTP Apple Remote Desktop 2.x (see http://www.dmtf.org/about/faq/wbem) 69709999 7070 TCP RTSP (Unregistered Use) Automatic Router Configuration Protocol (ARCP - Registered Use) 7070 7777 UDP TCP RTSP alternate iChat server file transfer proxy (unregistered use) 80008999 8005 8008 8080 TCP TCP TCP Tomcat remote shutdown iCal service Mac OS X Server v10.5 and later TCP Web service, iTunes Radio streams QuickTime Streaming Server QuickTime Streaming Server (RTSP) UDP QuickTime Streaming Server Apple Remote Desktop 2.0 or later (Observe/Control feature) Screen Sharing (Mac OS X 10.5 or later) UDP (Unregistered Use) xrdiags 3920 3920 Mac OS X camera and scanner sharing iChat and AOL Instant Messenger, file transfer iChat and Jabber messages MobileMe (Automatic sync notifications) (see note 9), APNs, FaceTime, Game Center iChat Server 3261 AirPort Admin Utility, AirPort Express Assistant iChat

3/4/11 11:50 AM

Alternate port for Apache web service

80858087 8088 8089 8096 8170

TCP

Wiki service

Mac OS X Server v10.5 and later

TCP TCP TCP TCP

Software Update service Web email rules Web Password Reset HTTPS (web service/site)

Mac OS X Server v10.4 and later Mac OS X Server v10.6 and later Mac OS X Server v10.6.3 and later Podcast Capture/podcast CLI

8171

TCP

HTTP (web service/site)

Podcast Capture/podcast CLI

http://support.apple.com/kb/ts1629

Page 4 of 6

Well known TCP and UDP ports used by Apple software products

3/4/11 11:50 AM

8175 8443 8800 8843 8821

TCP TCP TCP TCP TCP

Pcast Tunnel iCal service (SSL) Address Book service Address Book service (SSL) Stored (store server to communicate with server)

pcastagentd (for control operations, camera and so on) Mac OS X Server v10.5 and later Mac OS X Server v10.6 and later Mac OS X Server v10.6 and later Final Cut Server

8891 9006, 8080, 8443 11211 16080 1638416403

TCP -

ldsd (data transfers) HTTP and HTTPS ports for Tomcat Standalone and JBOSS (J2EE) memcached (unregistered)

Final Cut Server -

iCal Server Web service with performance cache iChat AV (Audio RTP, RTCP; Video RTP, RTCP)

TCP UDP

Real-Time Transport Protocol (RTP), Real-Time Control Protocol (RTCP)

1638416387

UDP

Real-Time Transport Protocol (RTP), Real-Time Control Protocol (RTCP)

FaceTime, Game Center

1639316402

UDP

Real-Time Transport Protocol (RTP), Real-Time Control Protocol (RTCP)

FaceTime, Game Center

1640316472

UDP

Real-Time Transport Protocol (RTP), Real-Time Control Protocol (RTCP)

Game Center

2400024999 4200042999 50003 50006

TCP

Web service with performance cache

TCP

iTunes Radio streams

FileMaker server service FileMaker helper service

Notes 1. Not all ports and services listed are present in or used by all software products. Some applications, such as Workgroup Manager, require more than one port and are listed accordingly. 2. Network administrators may wish to use port-watching software in addition to this information when making decisions about how to set up firewalls or similar access control schemes. 3. For an explanation of what a TCP or UDP port is, see the "IP Ports" section of "Mac OS X: What Is a Port?" 4. In Mac OS X Server v10.0.3 and later, some services that do not use well-known ports register with portmap. Use the rpcinfo -p command in Terminal to see what is registered with portmap. 5. The NetInfo parent-child model has replaced Shared Users and Groups in Mac OS X Server 10.0.3 and later. 6. With performance cache enabled in Mac OS X Server v10.0.3 and later, Apache is on port 16080 and cache is on port 80. 7. This table includes features and ports used by Mac OS X v10.3. Earlier versions of Mac OS X do not have all the features listed here. 8. For Mac OS X Server v10.3 VPN service: PPTP uses the IP-GRE protocol (IP protocol 47). L2TP/IPsec uses the IP-ESP protocol (IP protocol 50, ESP). 9. This is for current Jabber authentication methods. The previous method also requires port 5223. 10. servermgrd only listens on this port in Mac OS X v10.3.9 and earlier. With Mac OS X v10.4 or later, it listens only on 311.

Important: Information about products not manufactured by Apple is provided for information purposes only and does not constitute Apples recommendation or endorsement. Please contact the vendor for additional information.

http://support.apple.com/kb/ts1629

Page 5 of 6

Well known TCP and UDP ports used by Apple software products
Still need help? Take the Express Lane to contact technical support Use Express Lane to connect with an expert at Apple Support for personalized and convenient support. Get started

3/4/11 11:50 AM

http://support.apple.com/kb/ts1629

Page 6 of 6