sign in sign up
<<
Home , Back to My Mac, Bootstrap Protocol, Game Center, ICloud, NetBoot, Podcast Capture

Well known TCP and UDP ports used by Apple Languages English software products

Symptoms

Learn more about TCP and UDP ports used by Apple products, such as OS X, OS X , Desktop, and iCloud. Many of these are referred to as "well known" industry standard ports.

Resolution

About this table

The Service or Protocol Name column lists services registered with the Assigned Authority (http://www.iana.org/), except where noted as "unregistered use." The names of Apple products that use these services or protocols appear in the Used By/Additional Information column.

The RFC column lists the number of the Request For Comment document that defines the particular service or protocol, which may be used for reference. RFC documents are maintained by RFC Editor (http://www.rfc- editor.org/). If multiple RFCs define a protocol, there may only be one listed here.

This article is updated periodically and contains information that is available at time of publication. This document is intended as a quick reference and should not be regarded as comprehensive. Apple products listed in the table are the most commonly used examples, not a comprehensive list. For more information, review the below the table.

Tip: Some services may use two or more ports. It is recommend that once you've found an instance of a product in this list, search on the name (Command-F) and then repeat (Command-G) to locate all occurrences of the product. For example, VPN service may use up to four diferent ports: 500, 1701, 1723, and 4500.

Tip: Some firewalls allow selective configuration of UDP or TCP ports with the same number, so it can be important to note which type of port is to be configured. For example, NFS may use either or both TCP 2049 and UDP 2049 ports. If your firewall doesn't allow you to specify, making changes to a port probably afects both.

Note: Mac OS X v10.5 and later includes the Application Firewall, which is diferent than a port-based firewall.

Port TCP or Service or Protocol RFC Service Name Used by / Additional information UDP Name

7 TCP/UDP echo 792 echo -

20 TCP File Transport Protocol 959 ftp-data - (FTP)

21 TCP FTP control 959 ftp -

22 TCP Secure Shell (SSH) 4253 ssh Server (hosted and remote Git+SSH; remote SVN+SSH)

23 TCP 854 telnet -

25 TCP Simple Transfer 5321 smtp Mail (for sending ); iCloud Mail Protocol (SMTP) (sending)

53 TCP/UDP 1034 domain MacDNS, FaceTime (DNS)

67 UDP 951 bootps NetBoot via DHCP Server (BootP, bootps)

68 UDP Bootstrap Protocol 951 bootpc NetBoot via DHCP Client (bootpc)

69 UDP Trivial File Transfer 1350 tftp - Protocol (TFTP)

79 TCP Finger 1288 finger -

80 TCP Hypertext Transfer 2616 http World Wide Web, iCloud, QuickTime Protocol (HTTP) Installer, iTunes Store and Radio, Software Update, RAID Admin, Backup, Software Update, RAID Admin, Backup, iCal publishing, WebDAV (iDisk), Final Cut Server, AirPlay, OS X Lion Internet Restore, Profile Manager, Xcode Server (Xcode app, hosted and remote Git HTTP, remote SVN HTTP).

88 TCP Kerberos 4120 kerberos -

106 TCP Password Server - 3com-tsmux Mac OS X Server Password Server (Unregistered Use)

110 TCP Post Ofce Protocol 1939 pop3 Mail (for receiving email) (POP3) Authenticated Post Ofce Protocol (APOP)

111 TCP/UDP Remote Procedure Call 1057, sunrpc Portmap (sunrpc) (RPC) 1831

113 TCP Identification Protocol 1413 ident -

115 TCP Simple File Transfer 913 sftp - Protocol (SFTP)

119 TCP Network News Transfer 3977 nntp Used by applications that read Protocol (NNTP) newsgroups.

123 TCP/UDP 1305 ntp Date & Time preferences. Used for (NTP) network time server synchronization, AppleTV Network Time Server Sync

137 UDP Windows Internet - netbios-ns - Naming Service (WINS)

138 UDP NETBIOS - netbios-dgm Windows Datagram Service, Windows Service Network Neighborhood

139 TCP Server Message Block - netbios-ssn Used by Windows file and print (SMB) services, such as Windows Sharing in Mac OS X.

143 TCP Internet Message 3501 imap Mail (for receiving email) Access Protocol (IMAP)

161 UDP Simple Network 1157 snmp - Management Protocol (SNMP)

192 UDP OSU Network - osu-nms AirPort Base Station PPP status or Monitoring System discovery (certain configurations), AirPort Admin Utility, AirPort Express Assistant

311 TCP Secure server - asip- Server app, Server Admin, Workgroup administration webadmin Manager, , Admin.

312 TCP Xsan administration - vslmp Xsan Admin (OS X Mountain Lion v10.8 and later)

389 TCP Lightweight Directory 4511 ldap Used by applications that look up Access Protocol (LDAP) addresses, such as Mail and Address Book.

427 TCP/UDP Service Location 2608 svrloc Protocol (SLP)

443 TCP Secure Sockets Layer 2818 TLS websites, iTunes Store, FaceTime, (SSL, or "HTTPS") , iCloud authentication and DAV Services (, Calendars, and Bookmarks), iCloud backup and

applications (Calendars, Contacts, iPhone/, Mail, Documents & Photo Stream), iCloud Key Value Store (KVS), iPhoto Journals, AirPlay, OS X Internet Restore, Profile AirPlay, OS X Internet Restore, Profile Manager, , Dictation, Xcode Server (hosted and remote Git HTTPS, remote SVN HTTPS, registration).

445 TCP Microsoft SMB Domain - microsoft-ds - Server

464 TCP/UDP kpasswd 3244 kpasswd -

500 UDP ISAKMP/IKE 2408 isakmp OS X Server VPN service, Back to My Mac

514 TCP shell - shell -

514 UDP Syslog - syslog -

515 TCP Line Printer (LPR), Line - printer Used for printing to a network printer, Printer (LPD) Printer Sharing in Mac OS X

532 TCP netnews - netnews -

548 TCP - afpovertcp AppleShare, Personal File Sharing, Apple (AFP) over TCP File Service

554 TCP/UDP Real Time Streaming 2326 rtsp QuickTime Streaming Server (QTSS), Protocol (RTSP) players, AirPlay

587 TCP Message Submission for 4409 submission Mail (for sending mail), iCloud Mail Mail (Authenticated (SMTP authentication) SMTP)

600- TCP/UDP Mac OS X RPC-based - ipcserver Used by NetInfo, for example 1023 services

623 UDP Lights-Out-Monitoring - asf-rmcp Used by Intel ' Lights-Out- Monitoring (LOM) feature; used by Server Monitor

625 TCP Open Directory Proxy - dec_dlm Open Directory, Server app, Workgroup (ODProxy) (Unregistered Manager; DirectoryServices in OS X Lion Use) and earlier. Note: This port is registered to DEC DLM.

626 TCP AppleShare Imap Admin - asia IMAP Administration (Mac OS X Server

(ASIA) v10.2.8 or earlier)

626 UDP serialnumberd - asia Server serial number registration (Xsan, (Unregistered Use) Mac OS X Server v10.3 - v10.6)

631 TCP Internet Printing 2910 ipp Mac OS X Printer Sharing, Printing to Protocol (IPP) many common printers

636 TCP Secure LDAP - ldaps -

660 TCP Server administration - mac-srvr- Server administration tools for Mac OS X admin Server v10.4 and earlier, including AppleShare IP.

687 TCP Server administration - asipregistry Server administration tools for Mac OS X Server v10.6 and earlier, including AppleShare IP.

749 TCP/UDP Kerberos 5 - kerberos-adm - admin/changepw

985 TCP NetInfo Static Port - - -

993 TCP Mail IMAP SSL - imaps iCloud Mail (SSL IMAP)

995 TCP/UDP Mail POP SSL - pop3s -

1085 TCP/UDP WebObjects - -

1099 & TCP Remote RMI and IIOP - rmiregistry - 8043 Acess to JBOSS

1220 TCP QT Server Admin - qt- Used for administration of QuickTime serveradmin Streaming Server.

1640 TCP Certificate Enrollment - cert-responder Profile Manager, SCEP 1640 TCP Certificate Enrollment - cert-responder Profile Manager, SCEP Server

1649 TCP IP Failover - kermit -

1701 UDP L2TP - l2f Mac OS X Server VPN service

1723 TCP PPTP - pptp Mac OS X Server VPN service

1900 UDP SSDP - ssdp , Back to My Mac

2049 TCP/UDP 3530 nfsd - (NFS) (version 3 and 4)

2195 TCP Apple Push Notification - - Push notifications Service (APNS)

2196 TCP Apple Push Notification - - Feedback service

Service (APNS)

2336 TCP Mobile account sync - appleugcontrol Home directory synchronization

3004 TCP iSync - csoftragent -

3031 TCP/UDP Remote AppleEvents - eppc Program Linking, Remote Apple Events

3283 TCP/UDP Net Assistant - net-assistant 2.0 or later (Reporting feature)

3306 TCP MySQL - mysql -

3478- UDP - - nat-stun-port FaceTime, Game Center 3497 - ipether232port

3632 TCP Distributed compiler - distcc -

3659 TCP/UDP Simple Authentication - apple-sasl Mac OS X Server Password Server and Security Layer (SASL)

3689 TCP Digital Audio Access - daap iTunes Sharing, AirPlay Protocol (DAAP)

3690 TCP/UDP Subversion - svn Xcode Server (anonymous remote SVN)

4111 TCP - xgrid -

4398 UDP - - - Game Center

4488 TCP Apple Wide Area awacs-ice Back To My Mac Connectivity Service

4500 UDP IPsec NAT Traversal 4306 -msft OS X Server VPN service, Back to My Mac. Note: Configuring Back to My Mac on an AirPort Base Station or Time Capsule in NAT mode will impede connectivity to an OS X Server VPN service behind that NAT.

5003 TCP FileMaker - name - fmpro-internal - binding and transport

5009 TCP (Unregistered Use) - winfs AirPort Utility, AirPort Express Assistant

5060 UDP Session Initiation 3261 sip iChat Protocol (SIP)

5100 TCP - - socalia Mac OS X camera and scanner sharing

5190 TCP/UDP America Online (AOL) - iChat and AOL Instant Messenger, file transfer

5222 TCP XMPP (Jabber) 3920 jabber-client iChat and Jabber

5223 TCP Apple Push Notification - - iCloud DAV Services (Contacts, Service Calendars, and Bookmarks), APNS, FaceTime, Game Center, Photo Stream, Back to My Mac

5269 TCP XMPP server-to-server 3920 jabber-server iChat Server communication

5297 TCP - - - iChat (local trafc)

5298 TCP/UDP - - - iChat (local trafc)

5350 UDP NAT Port Mapping - - Bonjour, Back to My Mac Protocol Announcements

5351 UDP NAT Port Mapping - nat-pmp Bonjour, Back to My Mac Protocol

5353 UDP Multicast DNS (MDNS) 3927 mdns Bonjour, AirPlay, Home Sharing, Printer Discovery, Back to My Mac

5432 TCP PostgreSQL - postgresql May be enabled manually on Lion Server. Previously enabled by default for ARD 2.0 Database.

5678 UDP SNATMAP server - rrac The SNATMAP service on port 5678 is used to determine the external Internet address of hosts so that connections between iChat users can properly function behind network address translation (NAT). The SNATMAP service simply communicates to clients the Internet address that connected to it. This service runs on an Apple server, but does not send personal information to Apple. When certain iChat AV features are used, this service will be contacted. Blocking this service may cause issues with iChat AV connections with hosts on networks that use NAT.

5897- UDP (Unregistered Use) - - xrdiags 5898

5900 TCP Virtual Network - vnc-server Apple Remote Desktop 2.0 or later Computing (VNC) (Observe/Control feature) (Unregistered Use) (Mac OS X 10.5 or later)

5988 TCP WBEM HTTP - wbem-http Apple Remote Desktop 2.x (see http://dmtf.org/standards/wbem)

6970- UDP - - - QuickTime Streaming Server 9999

7070 TCP RTSP (Unregistered Use) - arcp QuickTime Streaming Server (RTSP) Automatic Router Configuration Protocol (ARCP - Registered Use)

7070 UDP RTSP alternate - arcp QuickTime Streaming Server

7777 TCP iChat server file transfer - cbt - proxy (unregistered use)

8000- TCP - - irdmi Web service, iTunes Radio streams 8999

8005 TCP Tomcat remote - - - shutdown

8008 TCP iCal service - http-alt Mac OS X Server v10.5 and later

8080 TCP Alternate port for - http-alt Also JBOSS HTTP in Mac OS X Server 10.4 Apache web service and earlier

8085- TCP Wiki service - - Mac OS X Server v10.5 and later 8087

8088 TCP Software Update service - radan-http Mac OS X Server v10.4 and later

8089 TCP Web email rules - - Mac OS X Server v10.6 and later 8096 TCP Web Password Reset - - Mac OS X Server v10.6.3 and later

8170 TCP HTTPS (web - - Capture/podcast CLI service/site)

8171 TCP HTTP (web service/site) - - /podcast CLI

8175 TCP Pcast Tunnel - - pcastagentd (for control operations, camera and so on)

8443 TCP iCal service (SSL) - pcsync-https Mac OS X Server v10.5 and later. Was JBOSS HTTPS in Mac OS X Server 10.4 and earlier.

8800 TCP Address Book service - sunwebadmin Mac OS X Server v10.6 and later

8843 TCP Address Book service - - Mac OS X Server v10.6 and later (SSL)

8821, TCP Stored - - Final Cut Server 8826

8891 TCP ldsd - - Final Cut Server (data transfers)

9006 TCP Tomcat standalone - - Mac OS X Server v10.6 and earlier

9100 TCP Printing - - Used for printing to certain network printers

9418 TCP/UDP git transfer - git Xcode Server (remote git)

11211 - memcached - - iCal Server (unregistered)

16080 TCP - - - Web service with performance cache

16384- UDP Real-Time Transport - connected, - iChat AV (Audio RTP, RTCP; Video RTP, 16403 Protocol (RTP), Real- RTCP) Time Control Protocol (RTCP)

16384- UDP Real-Time Transport - connected, - FaceTime, Game Center 16387 Protocol (RTP), Real- Time Control Protocol (RTCP)

16393- UDP Real-Time Transport - - FaceTime, Game Center 16402 Protocol (RTP), Real- Time Control Protocol (RTCP)

16403- UDP Real-Time Transport - - Game Center 16472 Protocol (RTP), Real- Time Control Protocol (RTCP)

24000- TCP - - med-ltp Web service with performance cache 24999

42000- TCP - - - iTunes Radio streams

42999

49152- TCP Xsan - - Xsan Filesystem Access 65535

49152- UDP - - - Back to My Mac 65535

50003 - FileMaker server service - - -

50006 - FileMaker helper service - - -

Notes

1. Not all ports and services listed are present in or used by all software products. Some applications, such as , require more than one port and are listed accordingly. 2. Network administrators may wish to use port-watching software in addition to this information when making decisions about how to set up firewalls or similar access control schemes. 3. For an explanation of what a TCP or UDP port is, see the "IP Ports" section of "Mac OS X: What Is a Port?" 4. In Mac OS X Server v10.0.3 and later, some services that do not use well-known ports register with portmap. Use the rpcinfo -p command in Terminal to see what is registered with portmap. 5. The NetInfo parent-child model has replaces Shared Users and Groups in Mac OS X Server v10.0.3 and later. 6. With performance cache enabled in Mac OS X Server v10.0.3 and later, Apache is on port 16080 and cache is on port 80. 7. This table includes features and ports used by Mac OS X v10.3. Earlier versions of Mac OS X do not have all the features listed here. 8. For Mac OS X Server v10.3 VPN service: PPTP uses the IP-GRE protocol (IP protocol 47). L2TP/IPsec uses the IP-ESP protocol (IP protocol 50, ESP). 9. servermgrd only listens on this port in Mac OS X v10.3.9 and earlier. With Mac OS X v10.4 or later, it listens on 311 only. 10. The output of Terminal commands may replace the port number with the that is listed in /etc/services. Please refer to the /etc/services column in the above table to see what the label is.

Important: Mention of third-party websites and products is for informational purposes only and constitutes neither an endorsement nor a recommendation. Apple assumes no responsibility with regard to the selection, performance or use of information or products found at third-party websites. Apple provides this only as a convenience to our users. Apple has not tested the information found on these sites and makes no representations regarding its accuracy or reliability. There are risks inherent in the use of any information or products found on the Internet, and Apple assumes no responsibility in this regard. Please understand that a third-party site is independent from Apple and that Apple has no control over the content on that website. Please contact the vendor for additional information.

Last Modified: Oct 26, 2013

Helpful? Yes No 60% of found this helpful.

Additional Product Support Information

AirPort Base Stations Bonjour Lion Server

Mac OS X 10.5 Mac OS X 10.6 Mac OS X Server

OS X Lion OS X Mountain Lion iCloud

iPad iPhone iPod touch

Contact Apple Support

Need more help? Save time by starting your support request online and we'll connect you to an expert. Get started