What are the alternatives for checking open ports, besides telnet?











up vote
22
down vote

favorite
6












We can use the following in order to test telnet VIA port; in the following example we test port 6667:



[root@kafka03 ~]# telnet kafka02 6667

Trying 103.64.35.86...

Connected to kafka02.

Escape character is '^]'.

^CConnection closed by foreign host


Since on some machines we can't use telnet (for internal reasons) what are the alternatives to check ports, as telnet?






linux networking curl telnet







share|improve this question
























  • Is perl an option?
    – Jeff Schaller
    Nov 4 at 15:01






  • 4




    Those "internal reasons" might bar you from using other port-scanning software. I knew a guy that worked at a bank and had his contract terminated because he had a copy of nmap on his PC. He was using it for work-related purposes, but it was on the proscribed list, so he was escorted out of the building.
    – Roger Lipscombe
    Nov 4 at 15:39






  • 2




    Is perl an option? – YES
    – yael
    Nov 4 at 17:47






  • 1




    Note that telnet is a sophisticated protocol. The telnet utility turns off the protocol behaviour if a port is given at command line. Then it behaves much like netcat, just with line ending detection.
    – rexkogitans
    Nov 5 at 8:29

















up vote
22
down vote

favorite
6












We can use the following in order to test telnet VIA port; in the following example we test port 6667:



[root@kafka03 ~]# telnet kafka02 6667

Trying 103.64.35.86...

Connected to kafka02.

Escape character is '^]'.

^CConnection closed by foreign host


Since on some machines we can't use telnet (for internal reasons) what are the alternatives to check ports, as telnet?






linux networking curl telnet







share|improve this question
























  • Is perl an option?
    – Jeff Schaller
    Nov 4 at 15:01






  • 4




    Those "internal reasons" might bar you from using other port-scanning software. I knew a guy that worked at a bank and had his contract terminated because he had a copy of nmap on his PC. He was using it for work-related purposes, but it was on the proscribed list, so he was escorted out of the building.
    – Roger Lipscombe
    Nov 4 at 15:39






  • 2




    Is perl an option? – YES
    – yael
    Nov 4 at 17:47






  • 1




    Note that telnet is a sophisticated protocol. The telnet utility turns off the protocol behaviour if a port is given at command line. Then it behaves much like netcat, just with line ending detection.
    – rexkogitans
    Nov 5 at 8:29















up vote
22
down vote

favorite
6









up vote
22
down vote

favorite
6






6





We can use the following in order to test telnet VIA port; in the following example we test port 6667:



[root@kafka03 ~]# telnet kafka02 6667

Trying 103.64.35.86...

Connected to kafka02.

Escape character is '^]'.

^CConnection closed by foreign host


Since on some machines we can't use telnet (for internal reasons) what are the alternatives to check ports, as telnet?






linux networking curl telnet







share|improve this question















We can use the following in order to test telnet VIA port; in the following example we test port 6667:



[root@kafka03 ~]# telnet kafka02 6667

Trying 103.64.35.86...

Connected to kafka02.

Escape character is '^]'.

^CConnection closed by foreign host


Since on some machines we can't use telnet (for internal reasons) what are the alternatives to check ports, as telnet?






linux networking curl telnet




linux networking curl telnet






share|improve this question















share|improve this question













share|improve this question




share|improve this question








edited Nov 4 at 15:01









Jeff Schaller

35.6k952118




35.6k952118










asked Nov 4 at 10:25









yael

2,2831652




2,2831652












  • Is perl an option?
    – Jeff Schaller
    Nov 4 at 15:01






  • 4




    Those "internal reasons" might bar you from using other port-scanning software. I knew a guy that worked at a bank and had his contract terminated because he had a copy of nmap on his PC. He was using it for work-related purposes, but it was on the proscribed list, so he was escorted out of the building.
    – Roger Lipscombe
    Nov 4 at 15:39






  • 2




    Is perl an option? – YES
    – yael
    Nov 4 at 17:47






  • 1




    Note that telnet is a sophisticated protocol. The telnet utility turns off the protocol behaviour if a port is given at command line. Then it behaves much like netcat, just with line ending detection.
    – rexkogitans
    Nov 5 at 8:29




















  • Is perl an option?
    – Jeff Schaller
    Nov 4 at 15:01






  • 4




    Those "internal reasons" might bar you from using other port-scanning software. I knew a guy that worked at a bank and had his contract terminated because he had a copy of nmap on his PC. He was using it for work-related purposes, but it was on the proscribed list, so he was escorted out of the building.
    – Roger Lipscombe
    Nov 4 at 15:39






  • 2




    Is perl an option? – YES
    – yael
    Nov 4 at 17:47






  • 1




    Note that telnet is a sophisticated protocol. The telnet utility turns off the protocol behaviour if a port is given at command line. Then it behaves much like netcat, just with line ending detection.
    – rexkogitans
    Nov 5 at 8:29


















Is perl an option?
– Jeff Schaller
Nov 4 at 15:01




Is perl an option?
– Jeff Schaller
Nov 4 at 15:01




4




4




Those "internal reasons" might bar you from using other port-scanning software. I knew a guy that worked at a bank and had his contract terminated because he had a copy of nmap on his PC. He was using it for work-related purposes, but it was on the proscribed list, so he was escorted out of the building.
– Roger Lipscombe
Nov 4 at 15:39




Those "internal reasons" might bar you from using other port-scanning software. I knew a guy that worked at a bank and had his contract terminated because he had a copy of nmap on his PC. He was using it for work-related purposes, but it was on the proscribed list, so he was escorted out of the building.
– Roger Lipscombe
Nov 4 at 15:39




2




2




Is perl an option? – YES
– yael
Nov 4 at 17:47




Is perl an option? – YES
– yael
Nov 4 at 17:47




1




1




Note that telnet is a sophisticated protocol. The telnet utility turns off the protocol behaviour if a port is given at command line. Then it behaves much like netcat, just with line ending detection.
– rexkogitans
Nov 5 at 8:29






Note that telnet is a sophisticated protocol. The telnet utility turns off the protocol behaviour if a port is given at command line. Then it behaves much like netcat, just with line ending detection.
– rexkogitans
Nov 5 at 8:29












5 Answers
5






active

oldest

votes

















up vote
17
down vote



accepted










If using Bash Shell, then you can use its feature to check if a port is open or closed:



(timeout 1 bash -c '</dev/tcp/127.0.0.1/17500 && echo PORT OPEN || echo PORT CLOSED') 2>/dev/null

PORT OPEN



(timeout 1 bash -c '</dev/tcp/127.0.0.1/7500 && echo PORT OPEN || echo PORT CLOSED') 2>/dev/null

PORT CLOSED


Note that if the server does not respond after 1 second the timeout is reached, the commands between ' interrupted, and thus nothing is printed.






share|improve this answer










New contributor




in2nix4life is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.














  • 4




    Perhaps you should use the hostname from the question (kafka02) instead of 127.0.0.1, which makes it look like it only works with the loopback.
    – Dmitry Grigoryev
    Nov 5 at 9:52








  • 1




    (timeout 1 bash -c '</dev/tcp/www.google.com/444 && echo PORT OPEN || echo PORT CLOSED') 2>/dev/null prints nothing for me. (timeout 1 bash -c '</dev/tcp/www.google.com/444' && echo PORT OPEN || echo PORT CLOSED) 2>/dev/null worked as expected (prints PORT CLOSED). Note the location of the '.
    – thecarpy
    Nov 7 at 9:21












  • what you get on bash -c '</dev/tcp/kafka01/6667'
    – yael
    Nov 7 at 10:45










  • then echo $? ( if 0 then port is open ,)
    – yael
    Nov 7 at 10:46


















up vote
25
down vote













netcat is one option. 



nc -zv kafka02 6667




  • -z = sets nc to simply scan for listening daemons, without actually sending any data to them


  • -v = enables verbose mode






share|improve this answer





















  • is it possible to get standard output from the nc ? because I want to write in in my bash script
    – yael
    Nov 4 at 10:36






  • 1




    Read the documentation! Without options nc behaves a lot like telnet.
    – Henrik
    Nov 4 at 11:03










  • yes I read the docs but -w flag not works as timeout
    – yael
    Nov 4 at 11:09










  • example - c -v -w 1 kafka01 6667 ( we not get timeout )
    – yael
    Nov 4 at 11:09










  • nc -v -w 3 kafka01 6667 Ncat: Version 6.40 ( nmap.org/ncat ) Ncat: Connected to 10.164.235.85:6667. ( this still hang )
    – yael
    Nov 4 at 11:10




















up vote
21
down vote













The gold standard is undoubtedly nmap (nmap.org), but it typically requires root for “best results”. However, standalone binaries are available and it is possible to run it as an unprivileged user, just with degraded capabilities. For example, instead of a stealth syn scan (-sS), it falls back to a standard TCP connect scan (-sT). This is functionally equivalent to netcat, but with the nice multi-host, sped-up capabilities that it has.



An example: 



not-root$ nmap -sT google.com

Starting Nmap 7.70 ( https://nmap.org ) at 2018-11-04 21:01 GMT

Nmap scan report for google.com (172.217.23.14)

Host is up (0.12s latency).

rDNS record for 172.217.23.14: lhr35s01-in-f14.1e100.net

Not shown: 998 filtered ports

PORT    STATE SERVICE

80/tcp  open  http

443/tcp open  https





share|improve this answer























  • in most organizations nmap is considered as a scaning tool and one can not use nmap without proper authorization. Also if it is an EC2 instance, authorization required from AWS as well.
    – al mamun
    Nov 6 at 20:52


















up vote
4
down vote













If Perl is an option, you can use its IO::Socket module to test a connection to a particular host and port; the script below hard-codes TCP as the protocol (which is what telnet would use):



#!/usr/bin/perl -w



# tries to connect to the given IP and port (tcp)



use strict;

use IO::Socket;



my $desthost = shift or die "Usage: $0 host portn";

my $destport = shift or die "Usage: $0 host portn";



gethostbyname($desthost) || die "Invalid host givenn";



my $handle = IO::Socket::INET->new(

        PeerAddr => $desthost,

        PeerPort => $destport,

        Proto    => 'tcp')

    or die "can't connect to $desthost:$destport: $!n";

close $handle;

print "Success!n"


Sample output from a closed port:



$ ./above-script kafka02 6667

can't connect to kafka02:6667: Connection refused


Sample output from an open port:



$ ./above-script kafka02 4200

Success!





share|improve this answer






























    up vote
    0
    down vote













    Device file /dev/tcp and /dev/udp can be used instead of telnet.
    Example: echo 0 > /dev/tcp/103.64.35.86/6667 . Then check the exit status using #echo $? . If exit status is 0 then the port is open. If exit status is non-zero then the port is closed. For checking udp packets, use echo 0 > /dev/udp/103.64.35.86/6667 .






    share|improve this answer























    • in my redhat 7 under /dev/ , we not have tcp
      – yael
      Nov 7 at 10:47












    • ls /dev/tcp/ ls: cannot access /dev/tcp/: No such file or directory
      – yael
      Nov 7 at 10:48










    • on which OS you test it?
      – yael
      Nov 7 at 10:49










    • @yael, you will not get /dev/tcp or /dev/udp while ls. try the exact same command on your shell and you will get the result. by the way, I frequently use it on RHEL6,7
      – al mamun
      Nov 7 at 15:29











    Your Answer








    StackExchange.ready(function() {
    var channelOptions = {
    tags: "".split(" "),
    id: "106"
    };
    initTagRenderer("".split(" "), "".split(" "), channelOptions);

    StackExchange.using("externalEditor", function() {
    // Have to fire editor after snippets, if snippets enabled
    if (StackExchange.settings.snippets.snippetsEnabled) {
    StackExchange.using("snippets", function() {
    createEditor();
    });
    }
    else {
    createEditor();
    }
    });

    function createEditor() {
    StackExchange.prepareEditor({
    heartbeatType: 'answer',
    convertImagesToLinks: false,
    noModals: true,
    showLowRepImageUploadWarning: true,
    reputationToPostImages: null,
    bindNavPrevention: true,
    postfix: "",
    imageUploader: {
    brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
    contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
    allowUrls: true
    },
    onDemand: true,
    discardSelector: ".discard-answer"
    ,immediatelyShowMarkdownHelp:true
    });


    }
    });














     

    draft saved


    draft discarded


















    StackExchange.ready(
    function () {
    StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2funix.stackexchange.com%2fquestions%2f479710%2fwhat-are-the-alternatives-for-checking-open-ports-besides-telnet%23new-answer', 'question_page');
    }
    );

    Post as a guest


















    5 Answers
    5






    active

    oldest

    votes








    5 Answers
    5






    active

    oldest

    votes









    active

    oldest

    votes






    active

    oldest

    votes








    up vote
    17
    down vote



    accepted










    If using Bash Shell, then you can use its feature to check if a port is open or closed:



    (timeout 1 bash -c '</dev/tcp/127.0.0.1/17500 && echo PORT OPEN || echo PORT CLOSED') 2>/dev/null
    
PORT OPEN
    

    
(timeout 1 bash -c '</dev/tcp/127.0.0.1/7500 && echo PORT OPEN || echo PORT CLOSED') 2>/dev/null
    
PORT CLOSED


    Note that if the server does not respond after 1 second the timeout is reached, the commands between ' interrupted, and thus nothing is printed.






    share|improve this answer










    New contributor




    in2nix4life is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
    Check out our Code of Conduct.














    • 4




      Perhaps you should use the hostname from the question (kafka02) instead of 127.0.0.1, which makes it look like it only works with the loopback.
      – Dmitry Grigoryev
      Nov 5 at 9:52








    • 1




      (timeout 1 bash -c '</dev/tcp/www.google.com/444 && echo PORT OPEN || echo PORT CLOSED') 2>/dev/null prints nothing for me. (timeout 1 bash -c '</dev/tcp/www.google.com/444' && echo PORT OPEN || echo PORT CLOSED) 2>/dev/null worked as expected (prints PORT CLOSED). Note the location of the '.
      – thecarpy
      Nov 7 at 9:21












    • what you get on bash -c '</dev/tcp/kafka01/6667'
      – yael
      Nov 7 at 10:45










    • then echo $? ( if 0 then port is open ,)
      – yael
      Nov 7 at 10:46















    up vote
    17
    down vote



    accepted










    If using Bash Shell, then you can use its feature to check if a port is open or closed:



    (timeout 1 bash -c '</dev/tcp/127.0.0.1/17500 && echo PORT OPEN || echo PORT CLOSED') 2>/dev/null
    
PORT OPEN
    

    
(timeout 1 bash -c '</dev/tcp/127.0.0.1/7500 && echo PORT OPEN || echo PORT CLOSED') 2>/dev/null
    
PORT CLOSED


    Note that if the server does not respond after 1 second the timeout is reached, the commands between ' interrupted, and thus nothing is printed.






    share|improve this answer










    New contributor




    in2nix4life is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
    Check out our Code of Conduct.














    • 4




      Perhaps you should use the hostname from the question (kafka02) instead of 127.0.0.1, which makes it look like it only works with the loopback.
      – Dmitry Grigoryev
      Nov 5 at 9:52








    • 1




      (timeout 1 bash -c '</dev/tcp/www.google.com/444 && echo PORT OPEN || echo PORT CLOSED') 2>/dev/null prints nothing for me. (timeout 1 bash -c '</dev/tcp/www.google.com/444' && echo PORT OPEN || echo PORT CLOSED) 2>/dev/null worked as expected (prints PORT CLOSED). Note the location of the '.
      – thecarpy
      Nov 7 at 9:21












    • what you get on bash -c '</dev/tcp/kafka01/6667'
      – yael
      Nov 7 at 10:45










    • then echo $? ( if 0 then port is open ,)
      – yael
      Nov 7 at 10:46













    up vote
    17
    down vote



    accepted







    up vote
    17
    down vote



    accepted






    If using Bash Shell, then you can use its feature to check if a port is open or closed:



    (timeout 1 bash -c '</dev/tcp/127.0.0.1/17500 && echo PORT OPEN || echo PORT CLOSED') 2>/dev/null
    
PORT OPEN
    

    
(timeout 1 bash -c '</dev/tcp/127.0.0.1/7500 && echo PORT OPEN || echo PORT CLOSED') 2>/dev/null
    
PORT CLOSED


    Note that if the server does not respond after 1 second the timeout is reached, the commands between ' interrupted, and thus nothing is printed.






    share|improve this answer










    New contributor




    in2nix4life is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
    Check out our Code of Conduct.









    If using Bash Shell, then you can use its feature to check if a port is open or closed:



    (timeout 1 bash -c '</dev/tcp/127.0.0.1/17500 && echo PORT OPEN || echo PORT CLOSED') 2>/dev/null
    
PORT OPEN
    

    
(timeout 1 bash -c '</dev/tcp/127.0.0.1/7500 && echo PORT OPEN || echo PORT CLOSED') 2>/dev/null
    
PORT CLOSED


    Note that if the server does not respond after 1 second the timeout is reached, the commands between ' interrupted, and thus nothing is printed.







    share|improve this answer










    New contributor




    in2nix4life is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
    Check out our Code of Conduct.









    share|improve this answer



    share|improve this answer








    edited Nov 7 at 10:17









    thecarpy

    2,245824




    2,245824






    New contributor




    in2nix4life is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
    Check out our Code of Conduct.









    answered Nov 4 at 18:27









    in2nix4life

    1962




    1962




    New contributor




    in2nix4life is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
    Check out our Code of Conduct.





    New contributor





    in2nix4life is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
    Check out our Code of Conduct.






    in2nix4life is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
    Check out our Code of Conduct.








    • 4




      Perhaps you should use the hostname from the question (kafka02) instead of 127.0.0.1, which makes it look like it only works with the loopback.
      – Dmitry Grigoryev
      Nov 5 at 9:52








    • 1




      (timeout 1 bash -c '</dev/tcp/www.google.com/444 && echo PORT OPEN || echo PORT CLOSED') 2>/dev/null prints nothing for me. (timeout 1 bash -c '</dev/tcp/www.google.com/444' && echo PORT OPEN || echo PORT CLOSED) 2>/dev/null worked as expected (prints PORT CLOSED). Note the location of the '.
      – thecarpy
      Nov 7 at 9:21












    • what you get on bash -c '</dev/tcp/kafka01/6667'
      – yael
      Nov 7 at 10:45










    • then echo $? ( if 0 then port is open ,)
      – yael
      Nov 7 at 10:46














    • 4




      Perhaps you should use the hostname from the question (kafka02) instead of 127.0.0.1, which makes it look like it only works with the loopback.
      – Dmitry Grigoryev
      Nov 5 at 9:52








    • 1




      (timeout 1 bash -c '</dev/tcp/www.google.com/444 && echo PORT OPEN || echo PORT CLOSED') 2>/dev/null prints nothing for me. (timeout 1 bash -c '</dev/tcp/www.google.com/444' && echo PORT OPEN || echo PORT CLOSED) 2>/dev/null worked as expected (prints PORT CLOSED). Note the location of the '.
      – thecarpy
      Nov 7 at 9:21












    • what you get on bash -c '</dev/tcp/kafka01/6667'
      – yael
      Nov 7 at 10:45










    • then echo $? ( if 0 then port is open ,)
      – yael
      Nov 7 at 10:46








    4




    4




    Perhaps you should use the hostname from the question (kafka02) instead of 127.0.0.1, which makes it look like it only works with the loopback.
    – Dmitry Grigoryev
    Nov 5 at 9:52






    Perhaps you should use the hostname from the question (kafka02) instead of 127.0.0.1, which makes it look like it only works with the loopback.
    – Dmitry Grigoryev
    Nov 5 at 9:52






    1




    1




    (timeout 1 bash -c '</dev/tcp/www.google.com/444 && echo PORT OPEN || echo PORT CLOSED') 2>/dev/null prints nothing for me. (timeout 1 bash -c '</dev/tcp/www.google.com/444' && echo PORT OPEN || echo PORT CLOSED) 2>/dev/null worked as expected (prints PORT CLOSED). Note the location of the '.
    – thecarpy
    Nov 7 at 9:21






    (timeout 1 bash -c '</dev/tcp/www.google.com/444 && echo PORT OPEN || echo PORT CLOSED') 2>/dev/null prints nothing for me. (timeout 1 bash -c '</dev/tcp/www.google.com/444' && echo PORT OPEN || echo PORT CLOSED) 2>/dev/null worked as expected (prints PORT CLOSED). Note the location of the '.
    – thecarpy
    Nov 7 at 9:21














    what you get on bash -c '</dev/tcp/kafka01/6667'
    – yael
    Nov 7 at 10:45




    what you get on bash -c '</dev/tcp/kafka01/6667'
    – yael
    Nov 7 at 10:45












    then echo $? ( if 0 then port is open ,)
    – yael
    Nov 7 at 10:46




    then echo $? ( if 0 then port is open ,)
    – yael
    Nov 7 at 10:46












    up vote
    25
    down vote













    netcat is one option. 



    nc -zv kafka02 6667




    • -z = sets nc to simply scan for listening daemons, without actually sending any data to them


    • -v = enables verbose mode






    share|improve this answer





















    • is it possible to get standard output from the nc ? because I want to write in in my bash script
      – yael
      Nov 4 at 10:36






    • 1




      Read the documentation! Without options nc behaves a lot like telnet.
      – Henrik
      Nov 4 at 11:03










    • yes I read the docs but -w flag not works as timeout
      – yael
      Nov 4 at 11:09










    • example - c -v -w 1 kafka01 6667 ( we not get timeout )
      – yael
      Nov 4 at 11:09










    • nc -v -w 3 kafka01 6667 Ncat: Version 6.40 ( nmap.org/ncat ) Ncat: Connected to 10.164.235.85:6667. ( this still hang )
      – yael
      Nov 4 at 11:10

















    up vote
    25
    down vote













    netcat is one option. 



    nc -zv kafka02 6667




    • -z = sets nc to simply scan for listening daemons, without actually sending any data to them


    • -v = enables verbose mode






    share|improve this answer





















    • is it possible to get standard output from the nc ? because I want to write in in my bash script
      – yael
      Nov 4 at 10:36






    • 1




      Read the documentation! Without options nc behaves a lot like telnet.
      – Henrik
      Nov 4 at 11:03










    • yes I read the docs but -w flag not works as timeout
      – yael
      Nov 4 at 11:09










    • example - c -v -w 1 kafka01 6667 ( we not get timeout )
      – yael
      Nov 4 at 11:09










    • nc -v -w 3 kafka01 6667 Ncat: Version 6.40 ( nmap.org/ncat ) Ncat: Connected to 10.164.235.85:6667. ( this still hang )
      – yael
      Nov 4 at 11:10















    up vote
    25
    down vote










    up vote
    25
    down vote









    netcat is one option. 



    nc -zv kafka02 6667




    • -z = sets nc to simply scan for listening daemons, without actually sending any data to them


    • -v = enables verbose mode






    share|improve this answer












    netcat is one option. 



    nc -zv kafka02 6667




    • -z = sets nc to simply scan for listening daemons, without actually sending any data to them


    • -v = enables verbose mode







    share|improve this answer












    share|improve this answer



    share|improve this answer










    answered Nov 4 at 10:28









    steve

    13.6k22452




    13.6k22452












    • is it possible to get standard output from the nc ? because I want to write in in my bash script
      – yael
      Nov 4 at 10:36






    • 1




      Read the documentation! Without options nc behaves a lot like telnet.
      – Henrik
      Nov 4 at 11:03










    • yes I read the docs but -w flag not works as timeout
      – yael
      Nov 4 at 11:09










    • example - c -v -w 1 kafka01 6667 ( we not get timeout )
      – yael
      Nov 4 at 11:09










    • nc -v -w 3 kafka01 6667 Ncat: Version 6.40 ( nmap.org/ncat ) Ncat: Connected to 10.164.235.85:6667. ( this still hang )
      – yael
      Nov 4 at 11:10




















    • is it possible to get standard output from the nc ? because I want to write in in my bash script
      – yael
      Nov 4 at 10:36






    • 1




      Read the documentation! Without options nc behaves a lot like telnet.
      – Henrik
      Nov 4 at 11:03










    • yes I read the docs but -w flag not works as timeout
      – yael
      Nov 4 at 11:09










    • example - c -v -w 1 kafka01 6667 ( we not get timeout )
      – yael
      Nov 4 at 11:09










    • nc -v -w 3 kafka01 6667 Ncat: Version 6.40 ( nmap.org/ncat ) Ncat: Connected to 10.164.235.85:6667. ( this still hang )
      – yael
      Nov 4 at 11:10


















    is it possible to get standard output from the nc ? because I want to write in in my bash script
    – yael
    Nov 4 at 10:36




    is it possible to get standard output from the nc ? because I want to write in in my bash script
    – yael
    Nov 4 at 10:36




    1




    1




    Read the documentation! Without options nc behaves a lot like telnet.
    – Henrik
    Nov 4 at 11:03




    Read the documentation! Without options nc behaves a lot like telnet.
    – Henrik
    Nov 4 at 11:03












    yes I read the docs but -w flag not works as timeout
    – yael
    Nov 4 at 11:09




    yes I read the docs but -w flag not works as timeout
    – yael
    Nov 4 at 11:09












    example - c -v -w 1 kafka01 6667 ( we not get timeout )
    – yael
    Nov 4 at 11:09




    example - c -v -w 1 kafka01 6667 ( we not get timeout )
    – yael
    Nov 4 at 11:09












    nc -v -w 3 kafka01 6667 Ncat: Version 6.40 ( nmap.org/ncat ) Ncat: Connected to 10.164.235.85:6667. ( this still hang )
    – yael
    Nov 4 at 11:10






    nc -v -w 3 kafka01 6667 Ncat: Version 6.40 ( nmap.org/ncat ) Ncat: Connected to 10.164.235.85:6667. ( this still hang )
    – yael
    Nov 4 at 11:10












    up vote
    21
    down vote













    The gold standard is undoubtedly nmap (nmap.org), but it typically requires root for “best results”. However, standalone binaries are available and it is possible to run it as an unprivileged user, just with degraded capabilities. For example, instead of a stealth syn scan (-sS), it falls back to a standard TCP connect scan (-sT). This is functionally equivalent to netcat, but with the nice multi-host, sped-up capabilities that it has.



    An example: 



    not-root$ nmap -sT google.com
    
Starting Nmap 7.70 ( https://nmap.org ) at 2018-11-04 21:01 GMT
    
Nmap scan report for google.com (172.217.23.14)
    
Host is up (0.12s latency).
    
rDNS record for 172.217.23.14: lhr35s01-in-f14.1e100.net
    
Not shown: 998 filtered ports
    
PORT    STATE SERVICE
    
80/tcp  open  http
    
443/tcp open  https





    share|improve this answer























    • in most organizations nmap is considered as a scaning tool and one can not use nmap without proper authorization. Also if it is an EC2 instance, authorization required from AWS as well.
      – al mamun
      Nov 6 at 20:52















    up vote
    21
    down vote













    The gold standard is undoubtedly nmap (nmap.org), but it typically requires root for “best results”. However, standalone binaries are available and it is possible to run it as an unprivileged user, just with degraded capabilities. For example, instead of a stealth syn scan (-sS), it falls back to a standard TCP connect scan (-sT). This is functionally equivalent to netcat, but with the nice multi-host, sped-up capabilities that it has.



    An example: 



    not-root$ nmap -sT google.com
    
Starting Nmap 7.70 ( https://nmap.org ) at 2018-11-04 21:01 GMT
    
Nmap scan report for google.com (172.217.23.14)
    
Host is up (0.12s latency).
    
rDNS record for 172.217.23.14: lhr35s01-in-f14.1e100.net
    
Not shown: 998 filtered ports
    
PORT    STATE SERVICE
    
80/tcp  open  http
    
443/tcp open  https





    share|improve this answer























    • in most organizations nmap is considered as a scaning tool and one can not use nmap without proper authorization. Also if it is an EC2 instance, authorization required from AWS as well.
      – al mamun
      Nov 6 at 20:52













    up vote
    21
    down vote










    up vote
    21
    down vote









    The gold standard is undoubtedly nmap (nmap.org), but it typically requires root for “best results”. However, standalone binaries are available and it is possible to run it as an unprivileged user, just with degraded capabilities. For example, instead of a stealth syn scan (-sS), it falls back to a standard TCP connect scan (-sT). This is functionally equivalent to netcat, but with the nice multi-host, sped-up capabilities that it has.



    An example: 



    not-root$ nmap -sT google.com
    
Starting Nmap 7.70 ( https://nmap.org ) at 2018-11-04 21:01 GMT
    
Nmap scan report for google.com (172.217.23.14)
    
Host is up (0.12s latency).
    
rDNS record for 172.217.23.14: lhr35s01-in-f14.1e100.net
    
Not shown: 998 filtered ports
    
PORT    STATE SERVICE
    
80/tcp  open  http
    
443/tcp open  https





    share|improve this answer














    The gold standard is undoubtedly nmap (nmap.org), but it typically requires root for “best results”. However, standalone binaries are available and it is possible to run it as an unprivileged user, just with degraded capabilities. For example, instead of a stealth syn scan (-sS), it falls back to a standard TCP connect scan (-sT). This is functionally equivalent to netcat, but with the nice multi-host, sped-up capabilities that it has.



    An example: 



    not-root$ nmap -sT google.com
    
Starting Nmap 7.70 ( https://nmap.org ) at 2018-11-04 21:01 GMT
    
Nmap scan report for google.com (172.217.23.14)
    
Host is up (0.12s latency).
    
rDNS record for 172.217.23.14: lhr35s01-in-f14.1e100.net
    
Not shown: 998 filtered ports
    
PORT    STATE SERVICE
    
80/tcp  open  http
    
443/tcp open  https






    share|improve this answer














    share|improve this answer



    share|improve this answer








    edited Nov 5 at 12:23









    crater2150

    2,49021521




    2,49021521










    answered Nov 4 at 21:04









    Landak

    23318




    23318












    • in most organizations nmap is considered as a scaning tool and one can not use nmap without proper authorization. Also if it is an EC2 instance, authorization required from AWS as well.
      – al mamun
      Nov 6 at 20:52


















    • in most organizations nmap is considered as a scaning tool and one can not use nmap without proper authorization. Also if it is an EC2 instance, authorization required from AWS as well.
      – al mamun
      Nov 6 at 20:52
















    in most organizations nmap is considered as a scaning tool and one can not use nmap without proper authorization. Also if it is an EC2 instance, authorization required from AWS as well.
    – al mamun
    Nov 6 at 20:52




    in most organizations nmap is considered as a scaning tool and one can not use nmap without proper authorization. Also if it is an EC2 instance, authorization required from AWS as well.
    – al mamun
    Nov 6 at 20:52










    up vote
    4
    down vote













    If Perl is an option, you can use its IO::Socket module to test a connection to a particular host and port; the script below hard-codes TCP as the protocol (which is what telnet would use):



    #!/usr/bin/perl -w
    

    
# tries to connect to the given IP and port (tcp)
    

    
use strict;
    
use IO::Socket;
    

    
my $desthost = shift or die "Usage: $0 host portn";
    
my $destport = shift or die "Usage: $0 host portn";
    

    
gethostbyname($desthost) || die "Invalid host givenn";
    

    
my $handle = IO::Socket::INET->new(
    
        PeerAddr => $desthost,
    
        PeerPort => $destport,
    
        Proto    => 'tcp')
    
    or die "can't connect to $desthost:$destport: $!n";
    
close $handle;
    
print "Success!n"


    Sample output from a closed port:



    $ ./above-script kafka02 6667
    
can't connect to kafka02:6667: Connection refused


    Sample output from an open port:



    $ ./above-script kafka02 4200
    
Success!





    share|improve this answer



























      up vote
      4
      down vote













      If Perl is an option, you can use its IO::Socket module to test a connection to a particular host and port; the script below hard-codes TCP as the protocol (which is what telnet would use):



      #!/usr/bin/perl -w
      

      
# tries to connect to the given IP and port (tcp)
      

      
use strict;
      
use IO::Socket;
      

      
my $desthost = shift or die "Usage: $0 host portn";
      
my $destport = shift or die "Usage: $0 host portn";
      

      
gethostbyname($desthost) || die "Invalid host givenn";
      

      
my $handle = IO::Socket::INET->new(
      
        PeerAddr => $desthost,
      
        PeerPort => $destport,
      
        Proto    => 'tcp')
      
    or die "can't connect to $desthost:$destport: $!n";
      
close $handle;
      
print "Success!n"


      Sample output from a closed port:



      $ ./above-script kafka02 6667
      
can't connect to kafka02:6667: Connection refused


      Sample output from an open port:



      $ ./above-script kafka02 4200
      
Success!





      share|improve this answer

























        up vote
        4
        down vote










        up vote
        4
        down vote









        If Perl is an option, you can use its IO::Socket module to test a connection to a particular host and port; the script below hard-codes TCP as the protocol (which is what telnet would use):



        #!/usr/bin/perl -w
        

        
# tries to connect to the given IP and port (tcp)
        

        
use strict;
        
use IO::Socket;
        

        
my $desthost = shift or die "Usage: $0 host portn";
        
my $destport = shift or die "Usage: $0 host portn";
        

        
gethostbyname($desthost) || die "Invalid host givenn";
        

        
my $handle = IO::Socket::INET->new(
        
        PeerAddr => $desthost,
        
        PeerPort => $destport,
        
        Proto    => 'tcp')
        
    or die "can't connect to $desthost:$destport: $!n";
        
close $handle;
        
print "Success!n"


        Sample output from a closed port:



        $ ./above-script kafka02 6667
        
can't connect to kafka02:6667: Connection refused


        Sample output from an open port:



        $ ./above-script kafka02 4200
        
Success!





        share|improve this answer














        If Perl is an option, you can use its IO::Socket module to test a connection to a particular host and port; the script below hard-codes TCP as the protocol (which is what telnet would use):



        #!/usr/bin/perl -w
        

        
# tries to connect to the given IP and port (tcp)
        

        
use strict;
        
use IO::Socket;
        

        
my $desthost = shift or die "Usage: $0 host portn";
        
my $destport = shift or die "Usage: $0 host portn";
        

        
gethostbyname($desthost) || die "Invalid host givenn";
        

        
my $handle = IO::Socket::INET->new(
        
        PeerAddr => $desthost,
        
        PeerPort => $destport,
        
        Proto    => 'tcp')
        
    or die "can't connect to $desthost:$destport: $!n";
        
close $handle;
        
print "Success!n"


        Sample output from a closed port:



        $ ./above-script kafka02 6667
        
can't connect to kafka02:6667: Connection refused


        Sample output from an open port:



        $ ./above-script kafka02 4200
        
Success!






        share|improve this answer














        share|improve this answer



        share|improve this answer








        edited Nov 6 at 20:14









        chicks

        8101721




        8101721










        answered Nov 6 at 13:32









        Jeff Schaller

        35.6k952118




        35.6k952118






















            up vote
            0
            down vote













            Device file /dev/tcp and /dev/udp can be used instead of telnet.
            Example: echo 0 > /dev/tcp/103.64.35.86/6667 . Then check the exit status using #echo $? . If exit status is 0 then the port is open. If exit status is non-zero then the port is closed. For checking udp packets, use echo 0 > /dev/udp/103.64.35.86/6667 .






            share|improve this answer























            • in my redhat 7 under /dev/ , we not have tcp
              – yael
              Nov 7 at 10:47












            • ls /dev/tcp/ ls: cannot access /dev/tcp/: No such file or directory
              – yael
              Nov 7 at 10:48










            • on which OS you test it?
              – yael
              Nov 7 at 10:49










            • @yael, you will not get /dev/tcp or /dev/udp while ls. try the exact same command on your shell and you will get the result. by the way, I frequently use it on RHEL6,7
              – al mamun
              Nov 7 at 15:29















            up vote
            0
            down vote













            Device file /dev/tcp and /dev/udp can be used instead of telnet.
            Example: echo 0 > /dev/tcp/103.64.35.86/6667 . Then check the exit status using #echo $? . If exit status is 0 then the port is open. If exit status is non-zero then the port is closed. For checking udp packets, use echo 0 > /dev/udp/103.64.35.86/6667 .






            share|improve this answer























            • in my redhat 7 under /dev/ , we not have tcp
              – yael
              Nov 7 at 10:47












            • ls /dev/tcp/ ls: cannot access /dev/tcp/: No such file or directory
              – yael
              Nov 7 at 10:48










            • on which OS you test it?
              – yael
              Nov 7 at 10:49










            • @yael, you will not get /dev/tcp or /dev/udp while ls. try the exact same command on your shell and you will get the result. by the way, I frequently use it on RHEL6,7
              – al mamun
              Nov 7 at 15:29













            up vote
            0
            down vote










            up vote
            0
            down vote









            Device file /dev/tcp and /dev/udp can be used instead of telnet.
            Example: echo 0 > /dev/tcp/103.64.35.86/6667 . Then check the exit status using #echo $? . If exit status is 0 then the port is open. If exit status is non-zero then the port is closed. For checking udp packets, use echo 0 > /dev/udp/103.64.35.86/6667 .






            share|improve this answer














            Device file /dev/tcp and /dev/udp can be used instead of telnet.
            Example: echo 0 > /dev/tcp/103.64.35.86/6667 . Then check the exit status using #echo $? . If exit status is 0 then the port is open. If exit status is non-zero then the port is closed. For checking udp packets, use echo 0 > /dev/udp/103.64.35.86/6667 .







            share|improve this answer














            share|improve this answer



            share|improve this answer








            edited Nov 6 at 20:55

























            answered Nov 6 at 20:47









            al mamun

            63110




            63110












            • in my redhat 7 under /dev/ , we not have tcp
              – yael
              Nov 7 at 10:47












            • ls /dev/tcp/ ls: cannot access /dev/tcp/: No such file or directory
              – yael
              Nov 7 at 10:48










            • on which OS you test it?
              – yael
              Nov 7 at 10:49










            • @yael, you will not get /dev/tcp or /dev/udp while ls. try the exact same command on your shell and you will get the result. by the way, I frequently use it on RHEL6,7
              – al mamun
              Nov 7 at 15:29


















            • in my redhat 7 under /dev/ , we not have tcp
              – yael
              Nov 7 at 10:47












            • ls /dev/tcp/ ls: cannot access /dev/tcp/: No such file or directory
              – yael
              Nov 7 at 10:48










            • on which OS you test it?
              – yael
              Nov 7 at 10:49










            • @yael, you will not get /dev/tcp or /dev/udp while ls. try the exact same command on your shell and you will get the result. by the way, I frequently use it on RHEL6,7
              – al mamun
              Nov 7 at 15:29
















            in my redhat 7 under /dev/ , we not have tcp
            – yael
            Nov 7 at 10:47






            in my redhat 7 under /dev/ , we not have tcp
            – yael
            Nov 7 at 10:47














            ls /dev/tcp/ ls: cannot access /dev/tcp/: No such file or directory
            – yael
            Nov 7 at 10:48




            ls /dev/tcp/ ls: cannot access /dev/tcp/: No such file or directory
            – yael
            Nov 7 at 10:48












            on which OS you test it?
            – yael
            Nov 7 at 10:49




            on which OS you test it?
            – yael
            Nov 7 at 10:49












            @yael, you will not get /dev/tcp or /dev/udp while ls. try the exact same command on your shell and you will get the result. by the way, I frequently use it on RHEL6,7
            – al mamun
            Nov 7 at 15:29




            @yael, you will not get /dev/tcp or /dev/udp while ls. try the exact same command on your shell and you will get the result. by the way, I frequently use it on RHEL6,7
            – al mamun
            Nov 7 at 15:29


















             

            draft saved


            draft discarded



















































             


            draft saved


            draft discarded














            StackExchange.ready(
            function () {
            StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2funix.stackexchange.com%2fquestions%2f479710%2fwhat-are-the-alternatives-for-checking-open-ports-besides-telnet%23new-answer', 'question_page');
            }
            );

            Post as a guest






































































            -

            這個網誌中的熱門文章

            Academy of Television Arts & Sciences

            圖片
            American television organization Academy of Television Arts & Sciences Founded 1946 ; 73 years ago  ( 1946 ) Location North Hollywood, California, United States Area served Television industry Product Emmy Awards Key people Frank Scherma ( Chairman and CEO ) Website televisionacademy.com [redirects to emmys.com , official website of the Emmys and the Television Academy The Academy of Television Arts & Sciences ( ATAS ), also colloquially known as the Television Academy , is a professional honorary organization dedicated to the advancement of the television industry in the United States. Founded in 1946, the organization presents the Primetime Emmy Awards, an annual ceremony honoring achievement in U.S. primetime television. Contents 1 History 2 Emmy Award 3 Publications and programs 4 Current governance 4.1 Board of Governors 5 Television Academy honors 5.1 1st Annual (2008) 5.2 2nd Annual (2009)...
            閱讀完整內容

            L'Équipe

            圖片
            For other uses, see Équipe (disambiguation). L'Équipe The front page of L'Équipe on 4 July 2011 Type Daily newspaper Format Tabloid Owner(s) Éditions Philippe Amaury Editor François Morinière Editor-in-chief Fabrice Jouhaud Founded 1946 Language French Headquarters Boulogne-Billancourt ISSN 0153-1069 Website www.lequipe.fr L'Équipe ( pronounced  [lekip] , French for "the team") is a French nationwide daily newspaper devoted to sport, owned by Éditions Philippe Amaury. The paper is noted for coverage of association football , rugby, motorsport and cycling. Its predecessor was L'Auto , a general sports paper whose name reflected not any narrow interest but the excitement of the time in car racing. L'Auto originated the Tour de France cycling stage race in 1903 as a circulation booster. The race leader's yellow jersey (French: maillot jaune ) was instituted in 1919, probably to reflect the dist...
            閱讀完整內容

            1995 France bombings

            圖片
            This article is a rough translation from French . It may have been generated by a computer or by a translator without dual proficiency. Please help to enhance the translation. The original article is under "français" in the "languages" sidebar. See this article's entry on Pages needing translation into English for discussion. 1995 France bombings Part of Algerian Civil War (spillover) Plaque commemorating the victims of the Saint-Michel station bombing on 25 July 1995 Location Paris and Lyon, France Date 25 July 1995  ( 1995-07-25 ) – 17 October 1995  ( 1995-10-17 ) Weapons Improvised explosive devices, school bombing Deaths 8 Non-fatal injuries 157 Perpetrator Armed Islamic Group Motive To induce the French government to withdraw support from the Algerian government during the Algerian Civil War The 1995 bombings in France were carried out by the Armed Islamic Group (GIA), who were broadening the Alger...
            閱讀完整內容