Press the , type cmd , and select Run as administrator . Type the following command and press Enter : netstat -ano | findstr LISTENING Use code with caution.
If you cannot disable the software completely but want to prevent external network traffic from reaching it, you can create a strict firewall rule.
You can create specific rules for TCP or UDP protocols, restricting them to specific ports or ranges.
The IP address and port number after the colon (e.g., 127.0.0.1:443 means port 443 is open).
Run this command to see only the ports currently waiting for connections: powershell windows 11 open ports
You will see a list of rows. Look for the column marked as LISTENING .
In computer networking, a port is a number assigned to a specific process or service running on a computer. It allows devices to communicate with each other and exchange data over a network. When a service or application is running on a computer, it listens on a specific port for incoming connections or data requests. Open ports are ports that are currently listening and accepting incoming connections.
Every open port represents a potential entry point into your system. Security experts warn that malicious external actors frequently scan networks for open ports, and a single open port can be a gateway to deeper system compromise.
Port 445 is the most significant open port on a default Windows installation. It is used for SMB over IP (Direct Host), facilitating file and printer sharing. Press the , type cmd , and select Run as administrator
This gives you a concise list of every port your PC is currently listening on. How to Open a Port in Windows 11 Firewall
The Complete Guide to Managing and Opening Ports in Windows 11
⚠️ If your NetBIOS or SMB ports (137-139, 445) are exposed to the internet, you face significant risk of automated attacks and ransomware. Secure these ports with tight firewall rules and strong authentication.
: Only open ports when absolutely necessary. Unnecessary open ports (like Port 135 or Port 445 ) are common targets for malware and remote attacks . You can create specific rules for TCP or
netstat -ano
Use external port checking tools like or the Test-NetConnection PowerShell cmdlet:
However, you often need to open specific ports. This is true for hosting gaming servers, running media servers like Plex, or setting up remote desktop connections.
