DNSTools

Port Checker

Check whether common service ports are open and reachable on a host.

About Port Checker

Check whether specific ports (HTTP, HTTPS, FTP, SSH, MySQL, etc.) are open on a server or IP.

Also available as an API: GET /api/port-checker?q=example.com or 8.8.8.8

Port Checker: find out which doors are open on your server

Picture a server as a building with many numbered doors. Each door, or port, serves a different kind of guest. Ports 80 and 443 for web, 22 for SSH, 3306 for MySQL, and so on. A port checker helps you confirm the doors that should be open really are, and the ones that should be closed are not quietly standing ajar.

This tool works by trying to open a connection to the port you specify. If it connects, the port is open and a service is listening. If not, it is closed or held back by a firewall. You can check common ports at once, or type your own list of ports separated by commas.

When a port checker saves you

The most common scenario: you just set up a new service but cannot reach it. Before blaming the app, check whether the port is actually open from the outside. Often it turns out the hosting firewall or cloud security group has not allowed it yet. Another scenario, you want to make sure a database is not exposed to the internet. If port 3306 turns out to be open to the public, that is a red light to close right away.

Open is not always dangerous, closed is not always safe

An open port is neutral. What decides safe or not is the service behind it and who is allowed to access it. A web server open on 443 is supposed to be that way. But an admin panel or database open without IP restriction is an open invitation for attackers. The principle is simple: open only what is needed, and restrict access to sensitive ports to trusted addresses only.

The ethics of port scanning

Checking one or two ports on a public server for diagnostics is normal. But massively scanning servers owned by others without permission can be deemed suspicious, even illegal in a number of countries. Use this tool for servers you own or manage. That is a healthy boundary.

Frequently Asked Questions

Is an open port dangerous?

An open port is not automatically dangerous, as long as the service behind it is intentionally exposed and kept secure. What you should watch for is a port open without your knowledge, like a 3306 database or 6379 Redis gaping at the internet. Those are favorite entry points for attackers. Close ports you do not use, and restrict access to sensitive ports to trusted IPs only.

What is the difference between closed and filtered?

Closed means the server responds but there is no service on that port. Filtered means a firewall swallows the connection without replying, so it feels like a timeout. From the tools point of view both appear as unreachable, but the cause differs. Filtered usually signals a firewall at work.

Can I scan other peoples servers?

Checking one or two ports on a public server for diagnostics is generally fine. But massively scanning servers you do not own without permission can be seen as suspicious activity, even illegal in some jurisdictions. Use this tool for servers you own or manage.

DNS Lookup WHOIS Lookup DNS Propagation Checker SSL Certificate Checker HTTP Header Checker Ping / Connectivity Blacklist / RBL Checker IP Geolocation