Kubernetes API Server
What is Port 6443?
Port 6443 is the default port for the Kubernetes API server, the central management component of a Kubernetes cluster. The API server is the frontend for the Kubernetes control plane, processing RESTful API requests to manage pods, services, deployments, and all other Kubernetes resources. Every kubectl command, controller, and scheduler communicates with the cluster through the API server on port 6443. The API server handles authentication, authorization (RBAC), admission control, and serves as the gateway to etcd. In managed Kubernetes services (EKS, GKE, AKS), the API server endpoint is exposed on this port. Self-managed clusters (kubeadm, k3s, RKE) also default to port 6443.
Common Uses
- Kubernetes cluster management via kubectl
- CI/CD pipeline deployments to Kubernetes
- Kubernetes controller and scheduler communication
- Service mesh and operator API interactions
Technical Details
Copy-paste commands to check port 6443 (Kubernetes API Server) from your terminal
Test connectivity
nc -zv example.com 6443
curl -v --max-time 5 http://example.com:6443/
telnet example.com 6443
nmap -p 6443 -sV example.com
(echo > /dev/tcp/example.com/6443) 2>/dev/null && echo "open" || echo "closed"
Open port in firewall
sudo ufw allow 6443/tcp
sudo iptables -A INPUT -p tcp --dport 6443 -j ACCEPT
sudo firewall-cmd --permanent --add-port=6443/tcp && sudo firewall-cmd --reload
Security Considerations
The Kubernetes API server is the most critical component to secure. Enable RBAC and use the principle of least privilege. Require authentication for all requests (no anonymous access in production). Use network policies to restrict pod access to the API server. Enable audit logging. Restrict API server network access to authorized users and systems. Use private API server endpoints in cloud environments.
Popular Ports Reference
The most commonly used and referenced network ports