Which Application Firewall ports are open?

Similar Messages

• How do I check to see if certain "ports are open?"

  I need to open four ports and have no idea how.  My web host thought that my ISP was blocking them; the ISP says they are not and that it is teh router.  I don't have pjone support anymore (WRT54G is old) so could not be walked through it by a tech support person.  If anyone can help me, I would appreciate it.  Thanks in advance for your help.

  there are port scanners online that check which ports are "open" between your LAN and WAN interfaces. just do a google search.

• How do i find out what tcp ports are open? and where do i look it up?

  how do i find out what tcp ports are open? and where would i go to see them? i have a program that is asking for it and i am unable to find where those are listed.

  If you are not too tech savvy, try using the Network Utility found in the Utilities folder. Just have the Mac scan itself.
  If tech savvy, there's always Fyodor's classic NMap, found at www.insecure.org.

• Server Admin refuses to connect, servermgrd runs but no ports are open

  Server Admin refuses to connect to server when run locally or remotely. Upon investigating, servermgrd seems to run but when I run network utilities and port scan the server, neither port 311 or 687 are open. All other services appear to be running fine. No firewall is running. Server Monitor also has the same problems but WorkGroup Manager seems to work fine.
  About 3 weeks ago, I had the problem and after trying many things, I did a clean install but the problem has reappeared after a few days/weeks.
  At some point, servermgrd was crashing with a message about NSURL.... (lost and forgot the exact message).
  -Tried to remove all the files in /private/var/servermgrd/
  This solved the crashes but it now runs without opening the ports. After starting, it doesn't run away and consume any CPU.
  Could not locate in system.log, console.log and servermgr.log any error messages indicatind something is wrong with servermgrd.
  The log does show that server names are coherent.
  Apr 18 23:06:31 server-1 servermgrd: servermgr_dns: hostname and DNS entries for this server are synchronized
  - Tried rebooting.
  - Tried running servermgrd with various flags, including alternate port but nothing happen. In fact the alternate ports do noot seem to get open. Even passing faulty options, it runs without complaining !
  - Tried to reinstall the admin tools
  - Tried to remove keychain paswords entries
  - Tried Disk Utilities repair permissions.
  Searching the posts, found somebody talkingabout servermgr_ctl
  I'm starting to suspect some hardware failure (RAM).
  Any suggestion how to test the ram.
  Running out of idea.
  Desperate for solution.
  Background
  OS X Server 10.4.9
  Server Admin version Version 10.4.7 (157.8)
  Xserve Dual G4 with 2 GB ram.   Mac OS X (10.4.9)  

  Ok, I ran memtest 4.2 and discovered the ram was failing, In replacing the dimm, they started working again so it may have been a mis-seated dimm module or some oxidation on the contact. My file system was already corrupt despite it being a fresh install. Then I checked and notice that the file com.apple.servermgrd.plist in Library preferences was gone. Either I stuppidly deleted it trying to fix the problem or it was hosed by the memory/file system corruption. Anyway, I copied it from another server and Both Server Admin and Server Monitor are now working.
  SOLVED.
  PS: in view of this event, once I'm satisfied the memory issues is solved, I'll do again a clean install. Who know what else was corrupted.

• Firefox will not remember which application to use to open .ris files

  Every single time I download a .ris file, used for downloading/importing bibliographic references into citation management software such as EndNote, I tell Firefox to remember to open it with EndNote... and every time, it forgets. Going into the applications tab of preferences shows that, indeed, ris is not listed, though I've been telling it to save this preference for about a year now. Other reference file types are opening automatically with EndNote, as desireed, but Firefox will simply not learn .ris for some reason, and there's no option for me to manually put this into the list!

  Download action are always linked to a specific MIME type send by the server and not the file extension.<br />
  If you can't set an automatic action then that most likely means that the server doesn't use a MIME type that Firefox recognizes and accepts.
  See "File handling in Firefox 3 and SeaMonkey 2": http://kb.mozillazine.org/File_types_and_download_actions

• How can I tell which apps or programs are open at any time. At a recent visit to the Genius at my local Apple store, the "Genius" told me that too many apps or programs are running in the background. I'm using Mountain Lion on a McBook Pro

  I was told that my Mac has to work extra hard because there are too many apps and/or programs open in the background. How can one tell what is open?? It must be something which is not normally visible to the user??
  Hans

  Thanks, I have looked at that several times but I can't detect any one item which would indicate overusage. The small chart (indicator bars) are much on the low side and the onse which show are basically green? Not sure what the person at the Genius Bar saw so I'm somewhat puzzled.

• To which application does business area belong?

  Hi,
  Report owners are defined by category (right now I am not taking into account users) . We can have an owner GL or AP etc. In other words, if the owner of a report is GL it would then make it obvious that the report belongs to the General Ledger group.
  However, the GL owner is defined in the same table as all other users. We would like a LOV of just the general categories and I can't think of a way to separate them from the rest of the users. For now, I defined the LOV using an sql select with " Select ...from dual...UNION .... ". Of course that means that if we should add a new owner then the owner must also be added to the LOV select.
  In the Oracle application, when defining a responsibility, there is an application to which the responsibility belongs, e.g. General Ledger. We are trying to find a similiar definition for the Business Areas.
  In our company there is more than one Business Area for General Ledger. Is there anything that links those BAs to GL? I don't see it in the eul5_bas table.
  The purpose of all this is so that we can have a report which can extract information from all reports of a specific area, for instance all GL reports.
  I would like to know if this is even possible.
  Thank you.
  Leah

  I am able to get the all the owners. It is an issue of weeding out only around 10 specific owners. I did that manually by selecting in the sql the owners that were " in (GL,AP....)". It all works fine. However, it was an issue of what if in the future another owner is added (we just recently added PN), and then having to remember that we have to manually go into the script to add PN.
  My boss brought up the issue that in the Oracle application all responsibilities belong to a group, isn't there something like that with the business areas. I just wanted to confirm that that is not the case with discoverer, and that is really what you confirmed. Furthermore, I felt that even if those specific owners or business areas were attached to an appication GL,AP etc., it would still be a problem because we would then have to limit the applications to those that we are interested in. We then return to manually limiting the select.
  In summary, you confirmed what I thought was the case, and I very much appreciate your responses.
  Tamir, thanks very much once again for your help.
  Leah

• Trying to figure out why ports are open for systemd processes

  Output of my "netstat -nlp"
  [root@server ~]# netstat -nlp
  Active Internet connections (only servers)
  Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name
  tcp 0 0 0.0.0.0:22 0.0.0.0:* LISTEN 2159/sshd
  tcp 0 0 127.0.0.1:3306 0.0.0.0:* LISTEN 2060/mysqld
  tcp 0 0 0.0.0.0:5355 0.0.0.0:* LISTEN 2168/systemd-resolv
  tcp6 0 0 :::80 :::* LISTEN 4460/nginx: master
  tcp6 0 0 :::22 :::* LISTEN 2159/sshd
  tcp6 0 0 :::443 :::* LISTEN 4460/nginx: master
  tcp6 0 0 :::5355 :::* LISTEN 2168/systemd-resolv
  udp 0 0 IP4:68 0.0.0.0:* 2078/systemd-networ
  udp 0 0 IP4:68 0.0.0.0:* 2078/systemd-networ
  udp 0 0 IP4:68 0.0.0.0:* 2078/systemd-networ
  udp 0 0 IP4:68 0.0.0.0:* 2078/systemd-networ
  udp 0 0 IP4:68 0.0.0.0:* 2078/systemd-networ
  udp 0 0 IP4:68 0.0.0.0:* 2078/systemd-networ
  udp 0 0 IP4:68 0.0.0.0:* 2078/systemd-networ
  udp 0 0 IP4:68 0.0.0.0:* 2078/systemd-networ
  udp 0 0 IP4:68 0.0.0.0:* 2078/systemd-networ
  udp 0 0 IP4:68 0.0.0.0:* 2078/systemd-networ
  udp 0 0 IP4:68 0.0.0.0:* 2078/systemd-networ
  udp 0 0 IP4:68 0.0.0.0:* 2078/systemd-networ
  udp 0 0 127.0.0.1:123 0.0.0.0:* 4491/ntpd
  udp 0 0 0.0.0.0:5355 0.0.0.0:* 2168/systemd-resolv
  udp6 0 0 ::1:123 :::* 4491/ntpd
  udp6 0 0 :::5355 :::* 2168/systemd-resolv
  raw6 0 0 :::58 :::* 7 2078/systemd-networ
  Why are ports 5355, 58, and 68 being listened to/open ?
  Please let me know if any additional information is needed, it is the latest version or arch linux and fully updated as of this post.

  68 is for BOOTP/DHCP. Why it needs so many open is beyond me - dhcpcd just has the one global 68 open for any amount of interfaces.
  The other two ports don't look like anything network setup related should have open.
  I would file a ticket with systemd upstream.

• Opening Firewall Ports for BitTorrent

  I just got a shiny new Mac and installed the regular no-frills BitTorrent client. It downloads, but never at more than 1 KB/s. So I Googled around a bit and found instructions on how to open ports 6681-6999 on the firewall. I followed the instructions, and I do believe those ports are open, at least according to the System Preferences--rebooted and everything. But it has no effect on BitTorrent--it still says "Online, maybe firewalled" in the lower right corner and won't go above 1 KB/s.
  I have an ethernet router, but it always worked fine with BitTorrent on my Windows computer, so I sincerely hope that is not the problem. (The only reason it's there is to give the long ethernet cable something to plug into, as the apartment came with a ridiculously short ethernet cable sticking out of the wall.)
  Does anyone know what I can do to get BitTorrent working?
  Thanks

  The first 3 numbers were the same as the router and the last number was unique. When I let it set its own IP address, it is 3, and I figure the other computer I have, which is not currently on or plugged in to anything, is probably 2.
  The changes I made in the router settings don't seem to have stuck. A friend recommended I use Azureus instead of the basic BitTorrent client, and it keeps telling me "UPnP: Lost connection to service WANIPConnection on UPnP device '192.168.11.1'" and ditto WANPPPConnection. Eventually, though, it stopped complaining about being firewalled. So far it hasn't picked up much speed, but I'm hoping that's just the usual phenomenon of my upload speed being slow as I have nothing to upload yet.
  Also, when I later tried to log in to the router without changing the IP address, it worked. (So the problem where it wouldn't let me log in unless I used the same IP address as before solved itself.)
  I think my problem may be solved, but I'm gonna give it a while to make sure.

• How do I check if ports on my router are open?

  I'm having some problems with my Tivo. It's telling me to make sure a number of ports are open on my router. I assume I can do this with my Mac. Does Leopard come with any software that would do this for me? Or is there a program I can download?
  Thanks,
  Mike

  You could try an outside source to ping your machine like:
  http://probe.hackerwatch.org/probe/probe.asp
  or
  http://www.grc.com/x/ne.dll?rh1dkyd2
  But there is also a function in 'Network Utility' called 'Port Scan'. I haven't used it much though.

• Hard problem. how to track which application a user opens next?

  Hello,
  When the user runs my program,
  then **with his permission**, I want to be able to track
  which application the user has opened.
  For example, if he opens resume.rtf in MSWord, then I
  should be able to record or store the full path of
  MSWord and also the document path (c:\my
  documents\resume.rtf).
  Do you know how to do it?
  I would appreciate any help.
  thanks,
  Anil Philip

  In this old link
  http://www.gamedev.net/community/forums/topic.asp?topic_id=313980
  Da Wanderer has posted code (in Visual Basic?) to open a folder. He says it is cross platform. I am stumped by the code for Linux. Does anyone know if it will work for Linux. ie. Can I use the same options to open a document in Linux?
  I plan to use Runtime.exec similarly in Java, to open a doc.
  if (vars.Contains("GNOME_DESKTOP_SESSION_ID"))
                 processes.Add( new ProcessAndArgs("nautilus", "--nodesktop --browser " + path) );
                 osFound = true;
            else if (vars.Contains("KDEDIR"))
                 processes.Add( new ProcessAndArgs("kfmclient", "exec " + path) );
                 osFound = true;
            }

• Outbound port to open

  I need to send a request to the infrastructure people saying which firewall ports to open to allow my SQL Server to extract data from an external SQL Server. (I can't test anything and they want a few ports or small range).
  I need to be able to connect from my server behind the firewall to the remote server - I guess the preference would be to use SSIS but would also like to be able to create a linked server connection.
  So which outbound ports would I need to be opened? I assume the destination would use the same port for the response? Does anything need to be done to allow that?

  I don't have any experience of enterprise-level firewall products, but the consumer-level firewalls I have used (Outpost, Kaspersky, ZoneAlarm etc), typicall permit outgoing traffic per
  application. That is, if I don't like Windows Media Player calling home, and I only use it to play files on my own machine, I can tell the firewall to block all outgoing traffic from WMP. A good firewall also lets me restrict an application to
  only use a certain port, a certain protocol or connect to a certain IP address.
  Blocking outgoing traffic per ports is completely crazy. And while the world of IT is full of people on high horses who know a lot less than the height of their horses, I would not expect a firewall administrator to be that stupid. (Because it would break
  down very quickly.) I suspect that you and the infrastructure people are talking past each other.
  What probably needs to be open is the incoming port on the remote server. That is, if that server is listening on port 1433, that is the port to open.
  As an example, while I can access the web in general from work, there is web-attest system that I can't access. This is sure due to that the URL includes :9898.
  Erland Sommarskog, SQL Server MVP, [email protected]

• Ports are being block (not responding)

  Ports are being block (not responding), port forwarding is configured on the router and firewall is turned off on the server (osx 10.8).  Am I missing anything?
  Server has a static IP which I forwarded to ports to
  I'm setting up VPN server and need ports 500, 1701, 1723, 4500 open
  Thanks
  -Allen

  Depending on the exact set-up of the network, L2TP requires UDP ports 500, 1701 and 4500 and the IP-ESP protocol, which is IP protocol 50; ESP. 
  Other than ESP (which is protocol 50 and not port 50), these are UDP ports, and not TCP.
  TCP 1723 is used for PPTP.  Not L2TP.
  It is common for L2TP passthrough to fail when more than one connection is active.
  As compared with L2TP, PPTP is usually easier to get going around NAT.  Though conversely, L2TP is rather more secure than PPTP.
  Check your Mac OS X Server firewall settings, too.  If you have some outboard network device providing a NAT gateway, try dropping the server firewall.
  Use of an external firewall-gateway with an embedded VPN server is something I've variously recommended, too.  (I find that VPN NAT passthrough is something best avoided, as VPNs and NAT are operating at crossed purposes.  VPNs seek to keep connection end-points known, while NAT tries to hide those connection end-points.  Doing the VPN processing on the Internet side of the NAT is just... well, easier.)
  Also ensure that your ISP is not blocking VPN connections.  While you might be on static IP, confirm the ports are open.  Trust, but verify.  Get yourself a UDP port scanner, and have a look. 
  If it's permissible within your ISP service tier (and depending on what protocols you're testing), probe the specific target ports using telnet or the openssl s_client command and (particularly for this case) the nc (netcat) tools, and see if the ports allow access.  nc can run port probes on UDP, which is the key piece here given telnet and s_client target TCP and TCP SSL connections.  Probably something like the nc -zu w.x.y.z udp-port command.

• What ports are blocked with Homefusion

  I am trying to figure out what ports are blocked on the homefusion service.

  There is no official list of blocked ports for HomeFusion or any of the other VZW products.  All products are treated the same way.  The NAT firewall on VZWs new LTE network is responsible for blocking internet communication as well as hiding public IP Addresses. No manual configuration of the devices themselves will allow you to work around the issue.  In truth it would be easier to create a list of the allowed ports but we don't have one of those either. 
  A rule of thumb is that you should assume any custom or unusual ports are blocked.  Even the less popular mainstream ports are blocked some times.  Only the major mainstream public ports are normally available.  You have to test out your applications to know for sure if they work.  If you have a laptop then stop by a VZW store and use one of their devices to test if it works before you buy.
  Also, anything depending on Public IP Addresses is broken on the new LTE network.  Some common examples are VOIP phones, Xbox hosting, IP security cameras, etc.  If you need remote access to your local network then forget about it.
  The work around to blocked ports and Public IPs are as follows:
  1. Setup a VPN to connect to a network where the ports are open
  2. Purchase a static IP Address from VZW for $500.00
  3. Use a different ISP
  VZW does not make exceptions for port blocking.  You have to work around them or get by without them.

• Firewall ports needed for rpc error in powershell

  In my enviroment we use several different DMZ's to host our servers in. This creates a situation where some of the computers in the domains are in different subnets.  I am trying to run a script in one domain in which all the computers are
  in the same subnet except for 2. In this case there is a firewall between the two subnets i am describing. When i try and run my script i recieve the error below. I have verified the following ports are open on the firewall.
  TCP 5985, 5986, 445, 389    TCP\UDP 135
  I have monitored our firewall and the ports being blocked when i run my script are TCP 4754 on one server and 5002 on the other. I believe these are DCOMM ports. What other ports or range of ports, or any other ports, do I need to open to resolve
  the RPC error? I do not want to just open a bunch of unneeded ports between my DMZ's. I could just open these 2 ports and resolve the issue for now, but i am trying to make this a powershell friendly enviroment, if you take my meaning. I should mention all
  local firewalls are turned off on the servers and the script runs fine on all other servers in the subnet.
  Thank You in advance for your help
  Get-WmiObject : The RPC server is unavailable. (Exception from HRESULT: 0x800706BA)
  At C:\Users\jthomas99\Desktop\Get-IPDetails.ps1:14 char:16
  +    $Networks = Get-WmiObject Win32_NetworkAdapterConfiguration -ComputerName $Co ...
  +                ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
      + CategoryInfo          : InvalidOperation: (:) [Get-WmiObject], COMException
      + FullyQualifiedErrorId : GetWMICOMException,Microsoft.PowerShell.Commands.GetWmiObjectCommand
  Thanks for your help

  Here is the DCOM firewall configuration document.  It should be given to your firewall admins and they need to pay special attention to setting up the DCOM port forwarding rules.
  http://support.microsoft.com/kb/154596/en-us
  There are also instructions on how to configure DCOM ports to work with WAN/Internet access issues.
  If you are looking to obtain remote management over a WAN or the Internet you can and should set up WMF as it can be run over a fully encrypted HTTPS port and it does not require odd dynamic port allocation
  as does RPC.
  You can also set up PowerShell Web Service which does not require dynamic ports and can be routed over any port.  It uses the browser to open a PowerShell session on a remote server that can have delegated access to other servers.  DCOM cannot
  do this without making many dangerous changes t your network.
  http://technet.microsoft.com/en-us/library/hh831611.aspx
  ¯\_(ツ)_/¯