What is an open port and how to secure them

I have open ports. What now?

icon-checkmark-green
Learn what an open port is,

icon-checkmark-green
Why open ports could be a security risk, and

icon-checkmark-green
How System Mechanic’s Network Scanner can help you identify and manage them
Man behind laptop yellow background article image

What are open ports?

The term port refers to a conduit or communication endpoint used to connect to another device over a network. An open port identifies a specific application or service, assigns a numerical value to it, and then transmits the data from one side to the other.

An example of this would be using your home computer to visit a web page. Your device uses a dedicated port number (443) on servers specifically assigned to Hypertext Transfer Protocol (HTTPS) to connect you to the Internet.

laptop google web browsing article image

What are the two types of open ports?

All devices connected to the internet primarily use two Transport Layer Network Protocols, Transmission Control Protocol (TCP) or User Datagram Protocol (UDP) by opening a port from one device to another to communicate and send data. Both send information via packets, or units of data grouped together. Computers using TCP establish a reliable connection directly with the computer they are sending data to, which guarantees that packets are received.

Devices using UDP also connect directly to one or more devices they are sending data to, but their data is streamed without any acknowledgement that the packets are received by the other device.

Note that a closed port rejects or ignores packets either because it is unreachable or there’s no application able to receive the incoming information.

What are some of the top ports likely to be in use on my network?

There are 65,535 available ports that your router and network devices can use to establish network and internet connections. The most common and well-known are below port 1000, for example

ApplicationPort Number
HTTP80
HTTPS443
FTP21
FTPS/SSH22
POP3 110
POP3 SSL995
IMAP143
IMAP SSL995
SMTP25 (Alternate: 26)
SMTP SSL587
MySQL3306
cPanel2082
CPanel SSL2083

Are all open ports bad?

TLDR; no. And to help illustrate this point, we’ll share this analogy with you:

“That’s like asking if an unlocked door on your house is bad. It depends on why it’s unlocked and if you know or not. If you unlocked it, because you’re expecting a friend to enter, then it’s good.

If it’s unlocked in the middle of the night, and you didn’t know, it’s potentially bad.

If you have a port open for a good reason, then it might be ok but still presents some risk. Ideally, you’d have a way to validate who is accessing the service at each port. This is what firewall rules do.”

Ports are essential and allow us to communicate over a network. And while open ports are not inherently dangerous, a misconfigured server or router with shoddy security rules, or vulnerable software can be dangerous.

System Mechanic 22.7 screenshot network scanner open ports list

How can I monitor and secure open ports?

If you have a PC or Windows device, you can install PC privacy and performance software like iolo’s System Mechanic which has a built-in Network Scanner utility that searches for open ports.

System Mechanic 22.7 sm-22-7 screenshot performance toolbox menu highlight

Scanning for open ports using System Mechanic

  1. From the performance dashboard, click on the dropdown and select “Toolbox” from the list.
  2. Next, click on “Network Scanner”.
  3. Click on “Open Ports” and then the red “Scan Now” button.
  4. If discovered, “Suspicious Open Ports” will display a list of questionable ports by IP address
    1. Note: All links provided are completely safe to click on
  5. Research port numbers using a search engine like Google
  6. To block an open port, from the Windows task manager type in “Firewall & network protection”
  7. Next, click on “Advanced settings”
  8. In the left menu click on “Inbound Rules” and then “New Rule”
  9. Select the “Port” radio button and then click “Next”
  10. Enter the specific port number in the field and then click “Next”
  11. Finally, select “Block the connection”

It’s a good idea to scan your PC for open ports regularly to help identify possible security vulnerabilities or open pathways that could be potentially exploited by hackers.

How Hack-Friendly Are Your Passwords?

Find out today by downloading the trial version of System Mechanic® (includes a free version of password management tool, ByePass™).

Download Now

Secure Your Digital Life

Get ultimate protection with System Mechanic® Ultimate Defense™—secure password management, anonymous browsing, malware blocking, and so much more—all in one easy-to-use software suite.

Get It Now

Need a PC Mechanic?

Let our experts help you

LiveTech is our affordable, 24/7 premium technical support that can help you solve virtually any technology issue. Let our utility software experts help to remove malware; set up Amazon Echo/Alexa; optimize printers, modems, and routers; block browser popups and adware, and more.

Learn More

(808) 207-3783
Available 24/7
People Using Laptop
© 1998-2022 iolo | All rights reserved. Industry-leading PC Performance Software. | Powered by RealDefense