What is port 445 used for?

Author: Koby Walsh  |  Last update: Friday, April 24, 2026

Port 445 and port 139 are Windows ports. Port 139 is used for Network Basic Input Output System (NetBIOS) name resolution and port 445 is used for Server Message Blocks (SMB). They all serve Windows File and Printer Sharing.

What happens if I block port 445?

Blocking TCP 445 will prevent file and printer sharing and also other services such as DHCP (dynamic host configuration protocol) which is frequently used for automatically obtaining an IP address from the DHCP servers used by many corporations and ISPs(Internet Service Providers) will stop functioning.

What is the difference between port 443 and 445?

This port transports data to the web browser in plaintext, an unencrypted method of sending data. TCP/UDP port 443: Port 443 delivers messages between web servers and browsers via HTTPS, the encrypted connection version of HTTP. TCP port 445: Port 445 allows access to SMB without the need for NetBIOS.

What does Active Directory use port 445 for?

Port 445 is associated with the SMB protocol, and is used to share resources such as files and printers without the need for a network basic input/output system (NetBIOS).

What is port 139 and 445 used for?

Port 139 is used for file and printer sharing over NetBIOS, running over TCP/IP. This setup is typical in older versions of Windows and in various Unix systems. On the other hand, port 445 is used for direct SMB communications without the need for NetBIOS.

What is an SMB Port? What is Port 445 and Port 139 used for?

What happens on port 445?

Port 445 is a Microsoft networking port which is also linked to the NetBIOS service present in earlier versions of Microsoft Operating Systems. It runs Server Message Block (SMB), which allows systems of the same network to share files and printers over TCP/IP. This port shouldn't be opened for external network.

Why port 445 should be closed?

Despite its utility, TCP 445's open nature can also be its Achilles' heel, exposing networks to unauthorized access and malicious exploits. Cybercriminals can leverage vulnerabilities in this port to inject malware, ransomware, or carry out Denial of Service (DoS) attacks.

How do I know if port 445 is enabled?

Type: “netstat –na” and hit enter. Find port 445 under the Local Address and check the State. If it says Listening, your port is open.

What port does Active Directory use for LDAP?

Quick Definition: LDAP port 389 is the default port for unencrypted LDAP communication, typically used for directory-related data exchange. In contrast, LDAP port 636 is the encrypted counterpart, ensuring secure transmission of data related to network accounts.

What is the port 443 used for?

Port 443 is specifically designated for HTTPS traffic, using TCP (Transmission Control Protocol) to create a secure channel over which data can be exchanged privately. One of the visible trust indicators is the padlock/tune icon on the address bar of the website.

What port do hackers use?

Commonly hacked TCP port numbers include port 21 (FTP), port 22 (SSH), port 23 (Telnet), port 25 (Simple Mail Transfer Protocol or SMTP), port 110 (POP3), and port 443 (HTTP and Hypertext Transfer Protocol Secure or HTTPS).

Is 445 TCP or UDP?

Direct hosted NetBIOS-less SMB traffic uses port 445 (TCP).

Can you telnet to port 445?

So if you had a problem copying files to a another computer and wanted to make sure that the computer was at least listening for SMB traffic (the networked protocol for file sharing in windows and most others) you would simply invoke the telnet client to connect to the TCP 445 port on the remote server.

Why do ISPs block port 445?

The reason some services decide to block port 445 is due to historical reasons of vulnerabilities found in lower SMB versions. Ideally, the port should be blocked for only for SMB 1.0 traffic and SMB 1.0 should be turned off on all clients.

What is SMB used for?

The Server Message Block (SMB) protocol is a client-server communication protocol that is used for shared access to files, directories, printers, serial ports, and other resources on a network. It also provides an authenticated inter-process communication (IPC) mechanism.

What does LDAP stand for?

Lightweight directory access protocol (LDAP) is a protocol that helps users find data about organizations, persons, and more. LDAP has two main goals: to store data in the LDAP directory and authenticate users to access the directory.

What port is RDP?

Remote Desktop Protocol (RDP) is a Microsoft proprietary protocol that enables remote connections to other computers, typically over TCP port 3389.

What port for ftp?

The FTP default port generally helps when making standards, and an unencrypted FTP connection is port 21. That is the number that anyone using an FTP client needs to know. You can use more ports, but they differ with the type of FTP. Standard FTP ports can be ports 20 and 21 since FTP was officially assigned both.

Should port 445 be closed?

We also recommend blocking port 445 on internal firewalls to segment your network and prevent lateral movement – this will prevent internal spreading of the ransomware.

Which service uses port 445?

Port 445 and port 139 are Windows ports. Port 139 is used for Network Basic Input Output System (NetBIOS) name resolution and port 445 is used for Server Message Blocks (SMB). They all serve Windows File and Printer Sharing.

How to check port status remotely?

Enter "telnet + IP address or hostname + port number" (e.g., telnet www.example.com 1723 or telnet 10.17. xxx. xxx 5000) to run the telnet command in Command Prompt and test the TCP port status. If the port is open, only a cursor will show.

What traffic is on port 445?

SMB operates over TCP port 445 and enables shared access to files, printers, and serial ports among devices on a network. Moreover, its core function of resource sharing, enables SMB to be utilized for following use cases: Involving mail slots (inter-process communication mechanisms)

What is listening on port 445?

Port 445 is used by newer versions of SMB (after Windows 2000) on top of a TCP stack, allowing SMB to communicate over the Internet. This also means you can use IP addresses in order to use SMB like file sharing.

Do domain controllers use SMB?

Windows clients and servers require outbound SMB connections in order to apply group policy from domain controllers and for users and applications to access data on file servers, so care must be taken when creating firewall rules to prevent malicious lateral or internet connections.

Previous article
Should a wood stove be air tight?
Next article
What is tougher than polyurethane?