LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   Linux - Server (https://www.linuxquestions.org/questions/linux-server-73/)
-   -   Check port open status for port 443 (https://www.linuxquestions.org/questions/linux-server-73/check-port-open-status-for-port-443-a-4175609276/)

asteroid4u 07-06-2017 01:06 AM
Check port open status for port 443
 
Hi,

I have opened port using firewall-cmd command like below:

firewall-cmd --zone=work --add-port=443/tcp --permanent

firewall-cmd --reload


firewall-cmd --list-ports
443/tcp

It showing 443/tcp is opned.

but when i check in below command

port 443 is not showing.

netstat -lntu


I want to enure port is opened from operating system end.


please help

bathory 07-06-2017 02:17 AM
Hi,
Quote:
but when i check in below command

port 443 is not showing.

netstat -lntu
Opening a port on firewall is one part. You also need a service listening on that port.
By default a ssl-enabled webserver is listening on port 443, so use your package manager to install and configure a ssl capable webserver (like apache, nginx, etc)

Regards

JJJCR 07-06-2017 03:28 AM
As Bathory mentioned there should be an application listening to that port or utilizing 443 port.

Why did you open port 443? The application suppose to use 443, is it running?

asteroid4u 07-06-2017 08:38 AM
Hi All,

I opened port because external application is going to access my os using port 443. so just want to know it is opened from my OS end

lazydog 07-06-2017 01:11 PM
Quote:
Originally Posted by asteroid4u (Post 5731404)
Hi All,

I opened port because external application is going to access my os using port 443. so just want to know it is opened from my OS end
Without something listening on port 443 they are not going to connect to anything. This is why you cannot verify the port is open and the same reason a hacker cannot detect it.

JJJCR 07-06-2017 08:24 PM
Quote:
Originally Posted by asteroid4u (Post 5731404)
Hi All,

I opened port because external application is going to access my os using port 443. so just want to know it is opened from my OS end
If external application is going to access via port 443, then an internal application should be ready to receive the request of the external application.

A logic would be like an Infrared, there's a transmitter and a receiver. Same logic goes with the network ports, external application connect to port 443 and internal application application ready to process the connection on port 443.

Quote:
Name:
https

Purpose:
http protocol over TLS/SSL

Description:
This port is used for secure web browser communication. Data transferred across such connections are highly resistant to eavesdropping and interception. Moreover, the identity of the remotely connected server can be verified with significant confidence. Web servers offering to accept and establish secure connections listen on this port for connections from web browsers desiring strong communication security.

Once established, web browsers inform their users of these secured connections by displaying an icon — a padlock, an unbroken key, etc. — in the status region of their window.
Quote above from this link: https://www.grc.com/port_443.htm

But if the external application is one of a kind that connects to port 443 on your network, and even though nothing is listening on port 443 and the application is able to connect to your internal network and control whatever it can control, then I think it's pure awesomeness and scary moment. Run or turn off the power or simply cut all the cables with a bolt cutter.

asteroid4u 07-06-2017 09:04 PM
Thanks a lot for all your Info's

what about using NMAP tool? cant we detect port open status using NMAP ?

scasey 07-06-2017 09:50 PM
Quote:
Originally Posted by asteroid4u (Post 5731722)
what about using NMAP tool? cant we detect port open status using NMAP ?
Again, nmap won't detect that the port is open unless something is listening on it.
Again, port 443 is for the secure http [https] server.
You will need to configure and run a secure web server to be able to have "external application" connect to it.
-or-
What JJJCR said:
Quote:
Run or turn off the power or simply cut all the cables with a bolt cutter.

JJJCR 07-06-2017 09:56 PM
Quote:
Originally Posted by asteroid4u (Post 5731722)
Thanks a lot for all your Info's

what about using NMAP tool? cant we detect port open status using NMAP ?
Okay what's your Public IP we will do it for you? hahaha

Nmap can detect of course as long as everything is setup properly.

If everything is not setup properly no any tool in this planet earth, can tell whether that port is open or not.

Here's an exercise, use any tool you want and check whether Port 80 is open or not, if it is open then check 443, if it is not open try accessing: https://www.duckduckgo.com

Check whether you can access or not.

BTW, your setup is something like this:

Linux BOX <---> Router <---> ISP / External Network

Or there is something in between the router?


All times are GMT -5. The time now is 02:17 PM.