Free Port Scanner โ€” Check Open Ports Online

Scan open ports on any IP address or domain. Check services like HTTP, HTTPS, SSH, FTP and more. Free port scanning tool.

What Is Port Scanning?

Port scanning is the process of sending network requests to a range of ports on a server or device to determine which ones are open, closed, or filtered. Each network port is a numbered communication endpoint from 0 to 65535, and services running on a server listen on specific ports. For example, an HTTP web server listens on port 80, while an HTTPS server uses port 443.

Understanding which ports are open on a server is fundamental for network security, system administration, and connectivity troubleshooting. A port scanner like miip.link's lets you quickly check which services are accessible from the Internet on any public IP address or domain name, without needing to install additional software.

Port scanning works by sending network packets to each target port and analyzing the response received. If a port responds with a connection confirmation, it is open and accepting connections. If it responds with a rejection, it is closed but accessible. If there is no response, the port may be filtered by a firewall that silently blocks incoming connections.

Most Common Ports and Their Services

There are 65,535 ports available on each IP address, but only a subset is commonly used for well-known services. The Internet Assigned Numbers Authority (IANA) classifies ports into three ranges:

PortProtocolServiceDescription
21TCPFTPFile transfer
22TCPSSHSecure shell for remote access
23TCPTelnetUnencrypted remote access
25TCPSMTPEmail sending
53TCP/UDPDNSDomain Name System
80TCPHTTPUnencrypted web server
110TCPPOP3Email retrieval
143TCPIMAPServer-side email
443TCPHTTPSSecure web server
3306TCPMySQLMySQL database
3389TCP/UDPRDPWindows Remote Desktop
5432TCPPostgreSQLPostgreSQL database
5900TCPVNCVNC remote desktop
8080TCPHTTP AltAlternative web server
8443TCPHTTPS AltAlternative secure web server

Well-Known Ports (0-1023)

These ports are assigned by IANA to standard services and require administrator privileges to use. They are the most widely used ports on the Internet: HTTP (80), HTTPS (443), SSH (22), FTP (21), SMTP (25), DNS (53) and Telnet (23). Most web and mail servers use ports within this range.

Registered Ports (1024-49151)

Assigned by IANA to specific applications that are not standard system services. They include MySQL (3306), PostgreSQL (5432), application servers like Tomcat (8009, 8080) and many others. Any user can configure services to listen on these ports without special privileges.

Dynamic/Private Ports (49152-65535)

Not assigned by IANA and used for temporary client-side connections. When your browser connects to a web server on port 443, it opens a connection from an ephemeral port in this range.

How to Use the Port Scanner

miip.link's port scanning tool is easy to use:

  1. Enter the IP address or domain you want to scan (e.g. 8.8.8.8 or google.com).
  2. Click "Scan Ports" and the tool will check the most common ports.
  3. Review the results showing which ports are open, closed, or filtered.

The tool scans the most relevant ports for common services. You can also use it directly from the miip.link home page.

TCP vs UDP: Differences

TCP and UDP are the two fundamental transport protocols on the Internet:

Port Security and Firewalls

Every open port is a potential entry point for attackers. Follow the principle of least privilege: only open the ports you need.

Security Best Practices

Unexpected Open Ports

If you find open ports you don't recognize, identify the service with netstat -tlnp or ss -tlnp. If it's not needed, disable it. If it is, make sure it has strong authentication and the latest updates. Configure your firewall to block unauthorized access.

How Port Scanning Works

The most common technique is the SYN scan (half-open): a SYN packet is sent to the target port. If it responds with SYN-ACK, it's open; if it responds with RST, it's closed; if it doesn't respond, it's filtered. This technique doesn't complete the TCP connection, making it faster and less intrusive.

Other techniques include: CONNECT scan (full TCP connection), FIN scan (sends FIN packet), Xmas scan (FIN, URG and PSH flags), and UDP scan. miip.link's tool uses safe and non-intrusive TCP scanning techniques.

Frequently Asked Questions About Port Scanning

What is a port scan?

A port scan is the process of checking which network ports are open and accepting connections on a device or server. Requests are sent to each port and the responses are analyzed to determine whether they are open, closed, or filtered by a firewall. It is an essential technique for security audits and network administration.

What are the most common ports?

The most common ports are: 80 (HTTP), 443 (HTTPS), 22 (SSH), 21 (FTP), 25 (SMTP), 53 (DNS), 3306 (MySQL), 5432 (PostgreSQL), 3389 (RDP) and 8080 (alternative HTTP). Each port is associated with a specific service that listens on it to receive connections.

Is port scanning legal?

Scanning ports on your own servers is completely legal and recommended as a security practice. However, scanning third-party servers without authorization may violate acceptable use policies or local laws. Always scan only networks and servers that belong to you or for which you have explicit authorization.

What is the difference between TCP and UDP?

TCP is a connection-oriented protocol that guarantees ordered data delivery. It is used for web browsing, email and file transfers. UDP is a faster connectionless protocol without delivery guarantees, used for streaming, DNS and online gaming. TCP scanning is more accurate and is what miip.link's tool uses.

How do I protect my server's ports?

Use a firewall to block unnecessary ports, change default ports (like SSH from 22), use public key authentication, keep software updated, disable unnecessary services, and consider port knocking. Run regular scans with miip.link's tool to verify that only authorized ports are open.

What does a "filtered" port mean?

A filtered port indicates that a firewall is blocking connection requests, making it impossible to determine whether it is open or closed. The scanner receives no response, making it impossible to know if a service is listening. Filtered ports are generally more secure than open ones.

How often should I scan my ports?

Monthly scans are recommended at minimum, or after changes to server configuration. For production servers with sensitive data, consider weekly or daily automated scans. Also scan after installing new software or updating configurations.

Scan Your Ports Now

Check which ports are open on your server. Free and no registration required.

๐Ÿ›ก๏ธ Use Port Scanner