Port 443 (HTTPS)

TCP

HTTP over TLS/SSL — HTTPS servers listen on port 443 by default. A valid TLS certificate is required for encrypted connections.

What is Port 443?

Port 443 is the default port for HTTPS (HTTP over TLS/SSL), the secure version of HTTP. It is the most widely used port on the internet, handling the majority of all web traffic with encryption to protect data in transit.

HTTPS on port 443 combines HTTP with TLS (Transport Layer Security) encryption. When you visit any website with a padlock icon, your browser is communicating over port 443. The TLS handshake establishes an encrypted channel, protecting sensitive data like passwords, credit card numbers, and personal information from eavesdropping.

Port 443 is also used for many non-browser HTTPS services: REST APIs, WebSocket connections (WSS), and various application protocols that tunnel through HTTPS for firewall traversal. The transition from HTTP to HTTPS has been driven by browser security warnings, SEO benefits, and the availability of free TLS certificates from Let's Encrypt.

Port 443 Security

While HTTPS on port 443 provides encryption, the web server itself remains a target for attacks including TLS downgrade attacks, certificate misconfigurations, and application-level vulnerabilities. Ensure strong TLS configuration: disable SSLv3, TLS 1.0, and TLS 1.1; use only strong cipher suites; enable HSTS with a long max-age.

Regularly renew TLS certificates and monitor for certificate transparency log entries. Implement security headers (CSP, X-Frame-Options, X-Content-Type-Options). Keep the web server software updated and conduct regular security audits.

How to Check Port 443

To check if port 443 is open on a remote host, use nmap: 'nmap -p 443 hostname'. For a quick TCP connection test, use: 'telnet hostname 443' or 'nc -zv hostname 443'. On Windows PowerShell, use: 'Test-NetConnection -ComputerName hostname -Port 443'.

To check if port 443 is listening on your local machine, use: 'netstat -tlnp | grep 443' on Linux, or 'ss -tlnp | grep 443'. On Windows, use: 'netstat -an | findstr 443'. For a comprehensive scan, use: 'nmap -sV -p 443 hostname' to detect the service version running on the port.

Related Ports

Port 80 (HTTP) Port 8443 (HTTPS Alt) Port 8080 (HTTP Proxy) Port 993 (IMAPS) Port 465 (SMTPS)

Frequently Asked Questions

What is port 443 used for?

Port 443 is the default port for HTTP over TLS/SSL (HTTPS). It is used for https communication using the TCP protocol.

Is port 443 TCP or UDP?

Port 443 uses TCP. TCP is used because https requires reliable, ordered data delivery.

Should port 443 be open?

Port 443 should only be open if you are actively running HTTPS. Close unused ports to reduce your attack surface. If needed, restrict access to trusted IP addresses using firewall rules.

How do I check if port 443 is open?

Use 'nmap -p 443 hostname' to scan remotely, or 'netstat -tlnp | grep 443' to check locally on Linux. On Windows, use 'Test-NetConnection -Port 443 hostname' in PowerShell.

How do I secure port 443?

Secure port 443 by restricting access with firewall rules, using encryption (TLS/SSL) where supported, keeping HTTPS updated, using strong authentication, and monitoring for unauthorized access attempts.

🔍 Check Your IP Address

While you're here, find out your public IP address, location, and ISP details instantly.

Check My IP →

Related Tools

Port Reference
Complete network port database
Port Scanner
Scan ports on any host
SSL Check
Verify SSL certificate status
HTTP Headers
View HTTP response headers
Traceroute
Trace network route to host
Speed Test
Test your internet speed