Ports of the server services
The following services are available for all Managed Servers with the Plesk Control Panel. Please note that the optionally marked services are not automatically executed on your Managed Server and must be installed manually.
Management services
| Service | Protocol | Port(s) |
|---|---|---|
| SSH / SFTP | TCP | 22 |
| FTP (Active) | TCP | 21, 20 |
| FTP (Passive) | TCP | 21, 49152 - 65535 |
| Plesk Control Panel | TCP | 8443, 8447 |
Email access
| Service | Protocol | Port(s) |
|---|---|---|
| POP3 (SSL / TLS) | TCP | 995 |
| IMAP (SSL / TLS) | TCP | 993 |
| SMTP (SSL / TLS) | TCP | 465 |
| SMTP (STARTTLS) | TCP | 587 |
Web server
| service | protocol | port(s) |
|---|---|---|
| nginx (HTTP) | TCP | 80 |
| nginx (HTTPS) | TCP | 443 |
| Apache2 (HTTP) | TCP | 7080 |
| Apache2 (HTTPS) | TCP | 7081 |
Databases
| Service | Protocol | Port(s) |
|---|---|---|
| MySQL | TCP | 3306 |
| MSSQL (Optional) | TCP | 1433 |
| PostgreSQL (Optional) | TCP | 5432 |
Cloud firewall
To enable access for one or more of the services listed above, this must be explicitly enabled in the cloud firewall for worldwide access. Further information on the cloud firewall and the associated firewall rules can be found in the article Firewall rules.
The global opening of ports may result in a security risk. If access is intended exclusively for one source, the firewall rule should be restricted to one source network or one source IP address.
Example firewall rule for FTP
Modern FTP programs and IDEs generally use the passive FTP protocol. To enable both FTP protocols within a firewall rule, you can enter several target ports separated by commas.
The colon notation can also be used to release the port range 49152:65535, which is required for the passive FTP protocol range.