▶ 가장 많이 사용되는 포트 요약 (0~1023)
|
키워드 |
포트번호 |
포트용도 |
|
icmp |
8/tcp, 8/udp
0/tcp, 0/udp |
Unassigned |
|
ftp-data |
20/tcp, 20/udp |
File Transfer [Default Data] |
|
ftp |
21/tcp, 21/udp |
File Transfer [Control] |
|
ssh |
22/tcp, 22/udp |
SSH Remote Login Protocol |
|
telnet |
23/tcp, 23/udp |
Telnet |
|
smtp |
25/tcp, 25/udp |
Simple Mail Transfer |
|
domain |
53/tcp, 53/udp |
Domain Name Server |
|
whois++ |
63/tcp, 63/udp |
whois++ |
|
tftp |
69/tcp, 69/udp |
Trivial File Transfer |
|
gopher |
70/tcp, 70/udp |
Gopher |
|
finger |
79/tcp, 79/udp |
Finger |
|
www |
80/tcp, 80/udp |
World Wide Web HTTP |
|
pop3 |
110/tcp, 110/udp |
Post Office Protocol - Version 3 |
|
ntp |
123/tcp, 123/udp |
Network Time Protocol |
|
epmap |
135/tcp, 135/udp |
DCE endpoint resolution |
|
profile |
136/tcp, 136/udp |
PROFILE Naming System |
|
netbios-ns |
137/tcp, 137/udp |
NETBIOS Name Service |
|
netbios-dgm |
138/tcp, 138/udp |
NETBIOS Datagram Service |
|
netbios-ssn |
139/tcp, 139/udp |
NETBIOS Session Service |
|
imap |
143/tcp, 143/udp |
Internet Message Access Protocol |
|
snmp |
161/tcp, 161/udp |
SNMP |
|
namp |
167/tcp, 167/udp |
NAMP |
|
imap3 |
220/tcp, 220/udp |
Interactive Mail Access Protocol v3 |
|
ldap |
389/tcp, 389/udp |
Lightweight Directory Access Protocol |
|
https |
443/tcp, 443/udp |
http protocol over TLS/SSL |
|
shell |
514/tcp |
cmd |
|
syslog |
514/udp |
syslog |
|
printer |
515/tcp, 515/udp |
spooler |
|
ftps-data |
989/tcp, 989/udp |
ftp protocol, data, over TLS/SSL |
|
ftps |
990/tcp, 990/udp |
ftp protocol, control, over TLS/SSL |
|
telnets |
992/tcp, 992/udp |
telnet protocol over TLS/SSL |
|
imaps |
993/tcp, 993/udp |
imap4 protocol over TLS/SSL |
|
pop3s |
995/tcp, 995/udp |
pop3 protocol over TLS/SSL (was spop3) |
▶ 예약된 포트 요약 (1024 ~ 49151)
|
키워드 |
포트번호 |
포트용도 |
|
ms-sql-s |
1433/tcp, 1433/udp |
Microsoft-SQL-Server |
|
ms-sql-m |
1434/tcp, 1434/udp |
Microsoft-SQL-Monitor |
|
sybase-sqlany |
1498/tcp, 1498/udp |
Sybase SQL Any |
|
atm-zip-office |
1520/tcp, 1520/udp |
atm zip office |
|
ncube-lm |
1521/tcp, 1521/udp |
nCube License Manager |
|
ricardo-lm |
1522/tcp, 1522/udp |
Ricardo North America License Manager |
|
cichild-lm |
1523/tcp, 1523/udp |
cichild |
|
ingreslock |
1524/tcp, 1524/udp |
ingres |
|
orasrv |
1525/tcp, 1525/udp |
oracle |
|
sybasedbsynch |
2439/tcp, 2439/udp |
SybaseDBSynch |
|
sybaseanywhere |
2638/tcp, 2638/udp |
Sybase Anywhere |
|
ms-wbt-server |
3389/tcp, 3389/udp |
MS WBT Server |
|
http-alt |
8080/tcp, 8080/udp |
HTTP Alternate (see port 80) |
▶ 웜/바이러스 포트로 방화벽에서 차단해야할 포트 요약
|
포트번호 |
원래 포트 용도 |
키워드 |
|
69/udp |
TFTP |
Nachi 웜,
Blaster 웜 |
|
80/udp |
web server |
Nachi 웜 |
|
135/tcp, 135/udp |
NETBios |
Nachi 웜,
Blaster 웜 |
|
137/udp |
NETBios |
Nachi 웜,
Blaster 웜 |
|
138/udp |
NETBios |
Nachi 웜,
Blaster 웜 |
|
139/tcp |
NETBios |
Nachi 웜,
Blaster 웜 |
|
443/tcp, 443/udp |
HTTPS |
Slapper 웜 |
|
445/tcp |
NETBios |
Nachi 웜,
Blaster 웜 |
|
514/tcp |
SHELL |
RPC Backdoor |
|
515/tcp, 515/udp |
LPRng |
Red 웜 |
|
593/tcp |
http-rpc-epmap, HTTP RPC Ep Map |
Nachi 웜,
Blaster 웜 |
|
1008/udp |
- |
LiOn 웜 |
|
1243/tcp |
- |
ShoolBus Backdoor |
|
1433/tcp, 1433/udp |
ms-sql-m, Microsoft-SQL-Monitor |
W32.Slammer 웜 |
|
1434/tcp, 1434/udp |
ms-sql-m, Microsoft-SQL-Monitor |
W32.Slammer 웜 |
|
3385/tcp |
qnxnetman |
Net-Worm.Win32.Mytob.dc |
|
4444/tcp |
krb524 |
Blaster 웜,
Welchia 웜 |
|
6667/tcp, 6667/udp |
ircu 6665-6669/tcp IRCU |
Welchia 웜 |
|
6668/tcp, 6668/udp |
ircu 6665-6669/tcp IRCU |
Welchia 웜 |
|
6669/tcp, 6669/udp |
ircu 6665-6669/tcp IRCU |
Welchia 웜 |
|
10008/tcp, 10008/udp |
- |
LiOn 웜 |
|
54321/tcp |
- |
ShoolBus Backdoor |
|
17300/tcp |
- |
Kuang2 바이러스 |
|
30999/tcp |
- |
Kuang2 바이러스 |
|
27374/tcp, 27374/udp |
- |
SubSeven Backdoor |
▶ 메신저 관련
|
Service
Name |
Server |
Port |
Description |
|
MSN |
64.4.130.0/24
207.46.104.0/24
207.46.106.0/24
207.46.107.0/24
207.46.108.0/24
207.46.110.0/24 |
TCP 1863 ,80 |
1863접속 시도 후 차단 되면 80 접속 시도 |
|
TCP 6891-6900 |
파일 전송 | ||
|
UDP 6901 |
음성채팅 | ||
|
UDP1863,5190 |
Microsoft Network Messenger | ||
|
Yahoo |
216.136.233.152/32
216.136.233.153/32
216.136.175.144/32
216.136.224.143/32
66.163.173.203/32
216.136.233.133/32
216.136.233.148/32
66.163.173.201/32
216.136.224.213/32 |
TCP 5050,5101 |
5050 접속 시도 후 차단 되어 있으면Port 계속 변경 |
|
TCP 5000-5001 |
음성채팅 | ||
|
TCP 5100 |
화상채팅 | ||
|
Nate On |
203.226.253.75/32
203.226.253.135/32
203.226.253.82/32 |
TCP 5004-5010 |
기본 포트 5004-5010 접속 시도후 차단되어 있으면 Port를 계속 변경 |
|
TCP80,83,7003 |
웹 컨텐츠 및 문자 보내기 | ||
|
Daum |
211.233.29.78/32 |
TCP 8062 |
|
|
SayClub |
211.233.47.20/32 |
|
|
|
AOL |
|
TCP 5190 |
AOL Instant Messenger Also used by: ICQ |
|
UDP 4000 |
ICQ_locator | ||
|
Dreamwize |
211.39.128.236/32
211.39.128.184/32 |
TCP 10000 |
|
|
버디버디 |
|
TCP 810 |
|
|
TCP 940 |
| ||
|
TCP 950 |
| ||
|
케이친구 |
|
TCP 7979 |
|
|
천리안 |
|
TCP 1420 |
|
|
TCP4949, 8989 |
파일 송수신 | ||
|
ICQ |
|
TCP 5190 |
|
|
UIN |
|
TCP 8080 |
|
|
Genile |
|
TCP 10000 |
|
▶ P2P 관련
|
service name |
TCP |
UDP |
|
소리바다 |
22322, 22323, 7675 |
22321, 7674 |
|
당나귀 |
4661, 4662, 4665 |
8719, 4665, 4672 |
|
구루구루 |
9292, 9293, 8282, 31200 |
|
|
Direct |
411-412 |
411-412 |
|
Gnutella |
6346, 6347 |
|
|
GoBoogy |
|
5325 |
|
Hotline |
5497, 5498, 5500, 5501, 5503 |
|
|
KaZaA |
1214 |
|
|
Madster |
23172, 9922 |
|
|
Maniac |
2000, 2222 |
2010 |
|
V-Share |
8401-8404 |
8401-8404 |
|
shareshare |
6399, 6777 |
|
|
WINMX |
6699 |
6257 |
|
엔유 |
8185, 8184 |
|
|
파일구리 |
9493 |
9493 |
|
파일피아 |
8090-8091 |
|
|
iMash |
5000 |
|
|
BitTorrent |
6881, 6889 |
|
|
Guntella-Morpheus |
6346-6347 |
6346-6347 |
|
GuRuGuRu |
9292, 8282, 31200 |
|
|
Madster-Aimster |
23172, 9922 |
|
|
MiRC |
6667, 6665-6670, 7000 |
|
|
Bluster |
|
41170 |
|
GoToMyPc |
8200 |
|
|
Napster |
6600-6699, 4444, 5555, 6666, 7777, 8888, 8875 |
|
▶ Game 관련
|
service name |
TCP |
UDP |
|
스타크래프트 |
6112, 1156-1158 |
6112, 1156-1158 |
