| Port | TCP or UDP | Protocol | RFC | Service Name | Purpose |
| 7 | TCP/UDP | echo | 792 | echo | – |
| 20 | TCP | File Transport Protocol (FTP) | 959 | ftp-data | -ftpd |
| 21 | TCP | FTP control | 959 | ftp | -ftpd |
| 22 | TCP | Secure Shell (SSH) | 4253 | ssh | Xcode Server |
| 23 | TCP | Telnet | 854 | telnet | -telnet |
| 25 | TCP | Simple Mail Transfer Protocol (SMTP) | 5321 | smtp | Sending email and server-to-server mail communications |
| 53 | TCP/UDP | Domain Name System (DNS) | 1034 | domain | |
| 67 | UDP | Bootstrap Protocol Server (BootP, bootps) | 951 | bootps | NetBoot/DHCP |
| 68 | UDP | Bootstrap Protocol Client (bootpc) | 951 | bootpc | NetBoot/DHCP |
| 69 | UDP | Trivial File Transfer Protocol (TFTP) | 1350 | tftp | |
| 79 | TCP | Finger | 1288 | finger | – |
| 80 | TCP | Hypertext Transfer Protocol (HTTP) | 2616 | http | The Internets, default port for websites running on OS X and OS X Server, iCloud, iTunes Store, Software Update services, Backup, iCal calendar publishing, WebDAV (iDisk), Final Cut Server (deprecated), AirPlay, Internet Restore (Lion), Profile Manager, Xcode Server (Xcode, remote Git HTTP, && remote SVN HTTP). |
| 88 | TCP | Kerberos | 4120 | kerberos | – |
| 106 | TCP | Password Server | – | 3com-tsmux | Mac OS X Server Password Server |
| 110 | TCP | Post Office Protocol (POP3) and Authenticated Post Office Protocol (APOP) | 1939 | pop3 | Mail (for receiving email) |
| 111 | TCP/UDP | Remote Procedure Call (RPC) | 1057, 1831 | sunrpc | Portmap (sunrpc) |
| 113 | TCP | Identification Protocol | 1413 | ident | – |
| 115 | TCP | Simple File Transfer Protocol (SFTP) | 913 | sftp | – |
| 119 | TCP | Network News Transfer Protocol (NNTP) | 3977 | nntp | Newsgroup readers. |
| 123 | TCP/UDP | Network Time Protocol (NTP) | 1305 | ntp | Date & Time system preferences. Used to sync network time via ntp, AppleTV Network Time Server Sync |
| 137 | UDP | Windows Internet Naming Service (WINS) | – | netbios-ns | -Resolve windows naming for SMB |
| 138 | UDP | NETBIOS Datagram Service | – | netbios-dgm | Windows Datagram Service, Windows Network Neighborhood |
| 139 | TCP | Server Message Block (SMB) | – | netbios-ssn | Used by Microsoft Windows file and print services, such as Windows Sharing in Mac OS X. |
| 143 | TCP | Internet Message Access Protocol (IMAP) | 3501 | imap | Mail (for receiving email) |
| 161 | UDP | Simple Network Management Protocol (SNMP) | 1157 | snmp | – |
| 192 | UDP | OSU Network Monitoring System | – | osu-nms | AirPort Base Station PPP status or discovery (certain configurations), AirPort Admin Utility, AirPort Express Assistant |
| 311 | TCP | Secure server administration | – | asip-webadmin | Server app, Server Admin (deprecated), Workgroup Manager (deprecated), Server Monitor (deprecated), Xsan Admin (deprecated). |
| 312 | TCP | Xsan administration | – | vslmp | Xsan Admin (OS X Mountain Lion v10.8 and later) |
| 389 | TCP | Lightweight Directory Access Protocol (LDAP) | 4511 | ldap | Used by applications that look up addresses, such as Mail and Address Book. |
| 427 | TCP/UDP | Service Location Protocol (SLP) | 2608 | svrloc | Network Browser |
| 443 | TCP | Secure Sockets Layer (SSL, or “HTTPS”) | 2818 | https | TLS-based websites (including those created in OS X Server), iTunes Store, FaceTime, Game Center, iCloud auth/CalDAV/CardDAV, iCloud backup, Find My iPhone, Find My Friends, iCloud webmail, iCloud Document Sync & Photo Stream, iCloud Key Value Store (KVS) Service, AirPlay, OS X Internet Restore, Profile Manager, Back to My Mac, Dictation, Xcode Server. |
| 445 | TCP | Microsoft SMB Domain Server | – | microsoft-ds | – |
| 464 | TCP/UDP | kpasswd | 3244 | kpasswd | -Kerberos Password Service |
| 500 | UDP | ISAKMP/IKE | 2408 | isakmp | OS X Server VPN service, Back to My Mac (to connect back to other computers when not on the same LAN) |
| 514 | TCP | shell | – | shell | – |
| 514 | UDP | Syslog | – | syslog | -Syslog services, including redirected logs from |
| 515 | TCP | Line Printer (LPR), Line Printer Daemon (LPD) | – | printer | Used for printing to a network printer and Printer Sharing (e.g. via System Preferences) |
| 532 | TCP | netnews | – | netnews | – |
| 548 | TCP | Apple Filing Protocol (AFP) over TCP | – | afpovertcp | AppleShare, Personal File Sharing, Apple File Service (AFP) |
| 554 | TCP/UDP | Real Time Streaming Protocol (RTSP) | 2326 | rtsp | QuickTime Streaming Server (QTSS), streaming media players, AirPlay |
| 587 | TCP | Message Submission for Mail (Authenticated SMTP) | 4409 | submission | encrypted sending of mail (for sending encrypted mail) and encrypted iCloud Mail (SMTP authentication) |
| 600-1023 | TCP/UDP | Mac OS X RPC-based services | – | ipcserver | Used by NetInfo, for example |
| 623 | UDP | Lights-Out-Monitoring | – | asf-rmcp | Used by Intel Xserves’ Lights-Out-Monitoring (LOM) feature; used by Server Monitor |
| 625 | TCP | Open Directory Proxy (ODProxy) (Unregistered Use) | – | dec_dlm | Open Directory, Server app, Workgroup Manager; DirectoryServices in OS X Lion and earlier. Note: This port is registered to DEC DLM. |
| 626 | TCP | AppleShare Imap Admin (ASIA) | – | asia | IMAP Administration (Mac OS X Server v10.2.8 or earlier) |
| 626 | UDP | serialnumberd (Unregistered Use) | – | asia | Server serial number registration (Xsan, OS X Server v10.3 – v10.6) |
| 631 | TCP | Internet Printing Protocol (IPP) | 2910 | ipp | Mac OS X Printer Sharing, Printing to common printers |
| 636 | TCP | Secure LDAP | – | ldaps | -lookup records over ldaps (e.g. via Active Directory, OpenLDAP, and Open Directory) |
| 660 | TCP | Server administration | – | mac-srvr-admin | Server administration tools for OS X Server v10.4 and earlier, including AppleShare IP. |
| 687 | TCP | Server administration | – | asipregistry | Server administration tools for Mac OS X Server v10.6 and earlier, including AppleShare IP. |
| 749 | TCP/UDP | Kerberos 5 admin/changepw | – | kerberos-adm | – |
| 985 | TCP | NetInfo Static Port | – | – | -Deprecated in 10.3, allowed rudimentary sharing of NetInfo (replaced with LDAP in subsequent versions) |
| 993 | TCP | Mail IMAP SSL | – | imaps | iCloud Mail (SSL IMAP) |
| 995 | TCP/UDP | Mail POP SSL | – | pop3s | – |
| 1085 | TCP/UDP | WebObjects | – | webobjects | – |
| 1099 & 8043 | TCP | Remote RMI and IIOP Acess to JBOSS | – | rmiregistry | – |
| 1220 | TCP | QT Server Admin | – | qt-serveradmin | Used for administration of QuickTime Streaming Server. |
| 1640 | TCP | Certificate Enrollment Server | – | cert-responder | Profile Manager, SCEP |
| 1649 | TCP | IP Failover | – | kermit | – |
| 1701 | UDP | L2TP | – | l2f | Mac OS X Server VPN service |
| 1723 | TCP | PPTP | – | pptp | Mac OS X Server VPN service |
| 1900 | UDP | SSDP | – | ssdp | Bonjour, Back to My Mac |
| 2049 | TCP/UDP | Network File System (NFS) (version 3 and 4) | 3530 | nfsd | -Can be required for protocols that require file sharing |
| 2195 | TCP | Apple Push Notification Service (APNS) | – | – | Push notifications (APNs – required to connect to Apple) |
| 2196 | TCP | Apple Push Notification Service (APNS) | – | – | Feedback service (APNs – required to receive feedback on what happened with push notifications/provide feedback to Apple) |
| 2336 | TCP | Mobile account sync | – | appleugcontrol | Home directory synchronization |
| 3004 | TCP | iSync | – | csoftragent | – |
| 3031 | TCP/UDP | Remote AppleEvents | – | eppc | Program Linking, Remote Apple Events |
| 3283 | TCP/UDP | Net Assistant | – | net-assistant | Apple Remote Desktop 2.0 or later (Reporting feature) |
| 3306 | TCP | MySQL | – | mysql | -Default port, configured in my.cnf |
| 3478-3497 | UDP | – | – | nat-stun-port – ipether232port | FaceTime, Game Center |
| 3632 | TCP | Distributed compiler | – | distcc | – |
| 3659 | TCP/UDP | Simple Authentication and Security Layer (SASL) | – | apple-sasl | Mac OS X Server Password Server |
| 3689 | TCP | Digital Audio Access Protocol (DAAP) | – | daap | iTunes Music Sharing, AirPlay |
| 3690 | TCP/UDP | Subversion | – | svn | Xcode Server (anonymous remote SVN) |
| 4111 | TCP | XGrid | – | xgrid | – |
| 4398 | UDP | – | – | – | Game Center |
| 4488 | TCP | Apple Wide Area Connectivity Service | awacs-ice | Back To My Mac | |
| 4500 | UDP | IPsec NAT Traversal | 4306 | ipsec-msft | Back to My Mac and OS X Server VPN when using IPsec |
| 5003 | TCP | FileMaker – name binding and transport | – | fmpro-internal | -Common database solution owned by Apple |
| 5009 | TCP | (Unregistered Use) | – | winfs | AirPort Utility, AirPort Express Assistant |
| 5060 | UDP | Session Initiation Protocol (SIP) | 3261 | sip | iChat/Messages |
| 5100 | TCP | – | – | socalia | OS X camera and scanner sharing |
| 5190 | TCP/UDP | America Online | – | aol | Messages and AOL Instant Messenger |
| 5222 | TCP | XMPP (Jabber) | 3920 | jabber-client | Messages and Jabber messages |
| 5223 | TCP | Apple Push Notification Service | – | – | Back to My Mac, DAV Services (Contacts, Calendars, and Bookmarks), APNS, FaceTime, Game Center, Photo Stream |
| 5269 | TCP | XMPP server-to-server communication | 3920 | jabber-server | iChat Server |
| 5297 | TCP | – | – | – | iChat (local traffic) |
| 5298 | TCP/UDP | – | – | – | iChat (local traffic) |
| 5350 | UDP | NAT Port Mapping Protocol Announcements | – | – | Bonjour, Back to My Mac |
| 5351 | UDP | NAT Port Mapping Protocol | – | nat-pmp | Bonjour, Back to My Mac, Rendezvous (deprecated) |
| 5353 | UDP | Multicast DNS (MDNS) | 3927 | mdns | Bonjour, AirPlay, Home Sharing, Printer Discovery, Back to My Mac |
| 5432 | TCP | PostgreSQL | – | postgresql | Not exposed by default. |
| 5678 | UDP | SNATMAP server | – | rrac | Determines the external Internet address (e.g. for iChat AV) |
| 5897-5898 | UDP | (Unregistered Use) | – | – | xrdiags |
| 5900 | TCP | Virtual Network Computing (VNC)(Unregistered Use) | – | vnc-server | Apple Remote Desktop 2.0 or later (Observe/Control feature)Screen Sharing (Mac OS X 10.5 or later) |
| 5988 | TCP | WBEM HTTP | – | wbem-http | Apple Remote Desktop 2.x (see http://dmtf.org/standards/wbem) |
| 6970-9999 | UDP | – | – | – | QuickTime Streaming Server |
| 7070 | TCP | RTSP (Unregistered Use)Automatic Router Configuration Protocol (ARCP – Registered Use) | – | arcp | QuickTime Streaming Server (RTSP) – this service is so old, people didn’t look down their nose at you if you didn’t bother to register a service. Wait, they did. Never mind… |
| 7070 | UDP | RTSP alternate | – | arcp | QuickTime Streaming Server |
| 7777 | TCP | Messages server file transfer proxy | – | cbt | – |
| 8000-8999 | TCP | – | – | irdmi | iTunes Radio streams |
| 8005 | TCP | Tomcat remote shutdown | – | – | – |
| 8008 | TCP | Calendar service | – | http-alt | OS X Server v10.5 and later, also referred to as iCal Server |
| 8080 | TCP | Alternate port for Apache web service | – | http-alt | Also Java/JBOSS HTTP in Mac OS X Server 10.4 and earlier |
| 8085-8087 | TCP | Wiki service | – | – | Mac OS X Server v10.5 and later |
| 8088 | TCP | Software Update service | – | radan-http | Mac OS X Server v10.4 and later |
| 8089 | TCP | Web email rules | – | – | Mac OS X Server v10.6 and later |
| 8096 | TCP | Web Password Reset | – | – | Mac OS X Server v10.6.3 and later |
| 8170 | TCP | HTTPS (web service/site) | – | – | Podcast Capture/podcast CLI |
| 8171 | TCP | HTTP (web service/site) | – | – | Podcast Capture/podcast CLI |
| 8175 | TCP | Pcast Tunnel | – | – | pcastagentd (for control operations, camera and so on). Podcast Producer is now deprecated. |
| 8443 | TCP | Calendar service (SSL) | – | pcsync-https | Mac OS X Server v10.5 and later. Was JBOSS HTTPS in Mac OS X Server 10.4 and earlier. |
| 8800 | TCP | Contacts service | – | sunwebadmin | Mac OS X Server v10.6 and later, also referred to as Address Book service |
| 8843 | TCP | Contacts service (SSL) | – | – | Mac OS X Server v10.6 and later, also referred to as Address Book service |
| 8821, 8826 | TCP | Stored | – | – | Final Cut Server (fcsvr, now deprecated) |
| 8891 | TCP | ldsd | – | – | Final Cut Server data transfers, now deprecated |
| 9006 | TCP | Tomcat standalone | – | – | Java/OS X Server v10.6 and earlier |
| 9100 | TCP | Printing | – | – | Used for printing to certain network printers |
| 9418 | TCP/UDP | git pack transfer | – | git | Xcode Server (remote git) |
| 11211 | – | memcached (unregistered) | – | – | Calendar Server |
| 16080 | TCP | – | – | – | Web service with performance cache |
| 16384-16403 | UDP | Real-Time Transport Protocol (RTP), Real-Time Control Protocol (RTCP) | – | connected, – | Messages AV (Audio RTP, RTCP; Video RTP, RTCP) |
| 16384-16387 | UDP | Real-Time Transport Protocol (RTP), Real-Time Control Protocol (RTCP) | – | connected, – | FaceTime, Game Center |
| 16393-16402 | UDP | Real-Time Transport Protocol (RTP), Real-Time Control Protocol (RTCP) | – | – | FaceTime, Game Center |
| 16403-16472 | UDP | Real-Time Transport Protocol (RTP), Real-Time Control Protocol (RTCP) | – | – | Game Center |
| 24000-24999 | TCP | – | – | med-ltp | Performance cache for the web service |
| 42000-42999 | TCP | – | – | – | iTunes Radio streams |
| 49152-65535 | TCP | Xsan | – | – | Xsan Filesystem Access |
| 49152-65535 | UDP | – | – | – | Back to My Mac |
| 50003 | – | FileMaker server | – | – | – |
| 50006 | – | FileMaker helper | – | – | – |