Port 5900 (VNC)

TCP

Virtual Network Computing — VNC listens on port 5900 by default.

What is Port 5900?

Port 5900 is the default port for VNC (Virtual Network Computing), a graphical desktop sharing protocol that allows remote control of another computer's display. VNC follows a client-server model similar to RDP but is platform-independent.

VNC on port 5900 transmits screen updates from the server to the viewer and forwards keyboard/mouse input from the viewer to the server. Multiple VNC implementations exist including TightVNC, RealVNC, TigerVNC, and UltraVNC. Additional displays use incrementing ports (5901, 5902, etc.).

VNC has historically weak security. Many implementations use DES-encrypted passwords (limited to 8 characters) and may not encrypt session data. Always tunnel VNC through SSH or VPN. Consider more secure alternatives like RDP or web-based remote access tools.

Port 5900 Security

VNC on port 5900 should be secured with appropriate access controls and monitoring. Ensure the service is only accessible from trusted networks by configuring firewall rules to restrict access. If the protocol supports encryption, enable TLS/SSL to protect data in transit.

Regularly update VNC to the latest version to patch known vulnerabilities. Monitor port 5900 for unauthorized access attempts and implement rate limiting where possible. Follow the principle of least privilege when configuring access permissions.

How to Check Port 5900

To check if port 5900 is open on a remote host, use nmap: 'nmap -p 5900 hostname'. For a quick TCP connection test, use: 'telnet hostname 5900' or 'nc -zv hostname 5900'. On Windows PowerShell, use: 'Test-NetConnection -ComputerName hostname -Port 5900'.

To check if port 5900 is listening on your local machine, use: 'netstat -tlnp | grep 5900' on Linux, or 'ss -tlnp | grep 5900'. On Windows, use: 'netstat -an | findstr 5900'. For a comprehensive scan, use: 'nmap -sV -p 5900 hostname' to detect the service version running on the port.

Related Ports

Port 3389 (RDP) Port 22 (SSH) Port 23 (Telnet) Port 5901

Frequently Asked Questions

What is port 5900 used for?

Port 5900 is the default port for Virtual Network Computing (VNC). It is used for vnc communication using the TCP protocol.

Is port 5900 TCP or UDP?

Port 5900 uses TCP. TCP is used because vnc requires reliable, ordered data delivery.

Should port 5900 be open?

Port 5900 should only be open if you are actively running VNC. Close unused ports to reduce your attack surface. If needed, restrict access to trusted IP addresses using firewall rules.

How do I check if port 5900 is open?

Use 'nmap -p 5900 hostname' to scan remotely, or 'netstat -tlnp | grep 5900' to check locally on Linux. On Windows, use 'Test-NetConnection -Port 5900 hostname' in PowerShell.

How do I secure port 5900?

Secure port 5900 by restricting access with firewall rules, using encryption (TLS/SSL) where supported, keeping VNC updated, using strong authentication, and monitoring for unauthorized access attempts.

🔍 Check Your IP Address

While you're here, find out your public IP address, location, and ISP details instantly.

Check My IP →

Related Tools

Port Reference
Complete network port database
Port Scanner
Scan ports on any host
SSL Check
Verify SSL certificate status
HTTP Headers
View HTTP response headers
Traceroute
Trace network route to host
Speed Test
Test your internet speed