Port Scanner

Scan common TCP ports on any host to check which services are reachable. Useful for firewall validation, service deployment verification, and network troubleshooting.

Port Scanner

Quick scan individual ports:

Understanding Port Scanning

A TCP port is a virtual endpoint for network communication identified by a number between 0 and 65535. The Internet Assigned Numbers Authority (IANA) divides ports into three ranges: well-known ports (0-1023) assigned to common services like HTTP (80) and HTTPS (443), registered ports (1024-49151) used by applications like MySQL (3306) and PostgreSQL (5432), and dynamic or private ports (49152-65535) used for ephemeral connections. When a service starts on a server, it binds to a specific port and listens for incoming connections — this is called an open port.

Port scanning is the process of checking which ports on a target host are accepting connections. A TCP connect scan attempts to complete the full three-way handshake (SYN, SYN-ACK, ACK) with each target port. If the handshake completes, the port is considered open. If the server responds with a reset (RST) packet or no response at all, the port is considered closed or filtered. Our scanner uses this method with a configurable timeout of 3 seconds per port, providing a balance between accuracy and speed. For the 22 most common ports, results typically return within 10-15 seconds.

Port scanning is an essential skill for network engineers, system administrators, and security professionals. Common use cases include verifying that firewall rules are correctly configured after a network change, confirming that a newly deployed service is listening on the expected port, auditing your own infrastructure for unexpected exposed services, and troubleshooting connectivity issues between application tiers. You can scan individual ports by entering comma-separated values or use the common ports preset to check 22 well-known services in a single scan. Remember that many hosts have firewalls or intrusion detection systems that may block or rate-limit scan attempts, and you should only scan hosts you own or have explicit permission to test.