RDP (Remote Desktop)
What is Port 3389?
Port 3389 is the default port for the Remote Desktop Protocol (RDP), Microsoft's proprietary protocol for remote graphical desktop access. RDP allows users to connect to and control a Windows computer from another device as if they were sitting at it. RDP supports full graphical desktop rendering, audio redirection, clipboard sharing, drive mapping, printer redirection, and multi-monitor support. Originally developed as part of Windows NT 4.0 Terminal Server Edition, RDP has evolved significantly and is built into all modern Windows editions (Professional and above). RDP uses TLS encryption for the session and supports Network Level Authentication (NLA) for pre-session authentication. It's the primary remote access method for Windows server administration and virtual desktop infrastructure (VDI).
Common Uses
- Remote Windows server administration
- Virtual Desktop Infrastructure (VDI)
- Remote work and telecommuting
- Technical support and remote assistance
Technical Details
Copy-paste commands to check port 3389 (RDP (Remote Desktop)) from your terminal
Test connectivity
nc -zv example.com 3389
curl -v --max-time 5 http://example.com:3389/
telnet example.com 3389
nmap -p 3389 -sU -sV example.com
(echo > /dev/tcp/example.com/3389) 2>/dev/null && echo "open" || echo "closed"
Open port in firewall
sudo ufw allow 3389/tcp
sudo iptables -A INPUT -p tcp --dport 3389 -j ACCEPT
sudo firewall-cmd --permanent --add-port=3389/tcp && sudo firewall-cmd --reload
Security Considerations
RDP is one of the most attacked ports on the internet. Ransomware gangs frequently gain initial access through exposed RDP with weak credentials. NEVER expose port 3389 directly to the internet. Use a VPN or RDP Gateway. Enable NLA. Enforce strong passwords and account lockout policies. Implement multi-factor authentication. Use Azure AD Application Proxy or similar solutions for secure remote access.
Popular Ports Reference
The most commonly used and referenced network ports