What is Port 443? Why do SSL VPNs make use of it?

Network security
Port 443
Remote access
Ssl vpn
I am setting up a Web SSL VPN for remote access across my WAN. Can someone explain why SSL VPNs use Port 443? Can I use any other port?

Answer Wiki

Thanks. We'll let you know when a new response is added.

TCP port 443 is the standard TCP port that is used for website which use SSL. When you go to a website which uses the https at the beginning you are connecting to port 443. You should not use a different port number, because if you do then your users will need to enter the port number in the URL when accessing the Web SSL VPN.

You can redirect users to a non standard port without having them input the port number in the SSL VPN address by using firewall rules that direct traffic to the correct host and port.
IMHO there is no security benefit to using non-standard ports as port scans will discover any open and accessible ports.

Discuss This Question: 13  Replies

There was an error processing your information. Please try again later.
Thanks. We'll let you know when a new response is added.
Send me notifications when members answer or reply to this question.
  • Nirav
    You can use any non-standard port you like e.g.8443. You traffic will still be encrypted as you use the SSL protocol. Most people who already have some server hosted on port 443 have to publish the SSL-VPN server on a different port.
    35 pointsBadges:
  • The Most-Watched IT Questions: May 4, 2010 - ITKE Community Blog
    [...] What is Port 443? Why do SSL VPNs make use of it? asked via e-mail and answered by DonMaslanka and MrDenny. .topsy_widget_shortcode,div.topsy-sm [...]
    0 pointsBadges:
  • VPN UTM vendor comparison: Evaluating secure remote access features | Datacentre Management . org
    [...] HTTPS traffic, so as to be means to heed among Web-based applications all pity Port 80 (HTTP) and 443 (HTTPS) to filter use and entrance on an focus basis, as good as on a calm [...]
    0 pointsBadges:
  • Michael Tidmarsh
    What's the SearchEnterpriseWAN team up to? Find out on the Window on WANs blog for the latest news and views for network professionals who are charged with implementing and administering enterprise WANs. 
    65,530 pointsBadges:
  • jim99934
    The reason is because a lot of financial and ATM transactions globally are done using port 443 and one other one.  Governments know that shutting down 443 is not possible without causing havoc to their financial markets -- therefore, vpn's exploit 443 even though they try real hard to block and or keep you out.  A good vpn will drill through the firewalls and blocks and eventually find 443 out.  
    10 pointsBadges:
  • mhashim
    How do I enable SSL 443 on Windows 7 and Windows Server 2008 R2?
    10 pointsBadges:
  • Genderhayes
    Netscape default port for mobile use encrypted even if you use a different port or protocol
    10,695 pointsBadges:
  • ClydeClyde
    Many people use VPN on port 443 simply to mask their traffic to appear as normal secure web browser traffic rather than VPN.  VPN servers/clients allow you to utilize ports of your choice. Normally, the client's port must match the server's port.
    10 pointsBadges:
  • Brindle
    Please provide more information about port 443.
    10 pointsBadges:
  • TheRealRaven
    If you want more info on port 443, submit a Google search for "port 443". You'll get all the info you can ever use. This isn't a research forum; it's a technical Q&A forum for problem solving.
    28,190 pointsBadges:
  • Meghabhardwaj
    PORT 443 provides https and tcp service and ssl vpn use web browser to get connected and needed http services.
    6,215 pointsBadges:
  • ToddGe
    I am already using Port 443 on my network for Exchange SSTP. I'd like to add a VPN server to the environment. Is there a way to deploy VPN using 444 and having that be transparent to the end user? How do you deal with it when you have multiple services all wanting to use 443 on separate physical/virtual systems need their own port forwarding at the router level?
    10 pointsBadges:
  • ToddN2000
    It's better to stick with the adopted standards in place today. Sure it can be done using another port but that means more work. Why reinvent the wheel...
    113,175 pointsBadges:

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to:

To follow this tag...

There was an error processing your information. Please try again later.

Thanks! We'll email you when relevant content is added and updated.


Share this item with your network: