SIP
What is Port 5060?
Port 5060 is the default port for the Session Initiation Protocol (SIP), the dominant signaling protocol for Voice over IP (VoIP), video conferencing, and multimedia communication sessions. Defined in RFC 3261, SIP handles call setup, modification, and teardown. When you make a VoIP call, SIP messages on port 5060 negotiate the session — who's calling whom, which codecs to use, and where to send the media stream. The actual voice/video data is carried by RTP (Real-time Transport Protocol) on separate ports. SIP is used by virtually every VoIP system — Asterisk, FreeSWITCH, Cisco, Avaya, and VoIP providers like Vonage and Twilio. SIP trunking has largely replaced traditional phone lines for business telephony.
Common Uses
- VoIP phone call signaling and setup
- Video conferencing session management
- SIP trunking for business phone systems
- Unified communications platforms
Technical Details
Copy-paste commands to check port 5060 (SIP) from your terminal
Test connectivity
nc -zv example.com 5060
curl -v --max-time 5 http://example.com:5060/
telnet example.com 5060
nmap -p 5060 -sU -sV example.com
(echo > /dev/tcp/example.com/5060) 2>/dev/null && echo "open" || echo "closed"
Open port in firewall
sudo ufw allow 5060/tcp
sudo iptables -A INPUT -p tcp --dport 5060 -j ACCEPT
sudo firewall-cmd --permanent --add-port=5060/tcp && sudo firewall-cmd --reload
Security Considerations
SIP on port 5060 is unencrypted and heavily targeted by VoIP fraud — attackers scan for SIP endpoints to make unauthorized calls, often to premium-rate numbers. Use SIPS (SIP over TLS, port 5061) for encryption. Implement strong SIP authentication, rate limiting, and geographic call restrictions. Use a Session Border Controller (SBC) for external SIP connections. Monitor for unusual call patterns.
Popular Ports Reference
The most commonly used and referenced network ports