RPCBind / Portmapper

Critical Risk

TCP/UDP — System & Infrastructure

Port Overview

Port Number 111

Service Name RPCBind / Portmapper

Transport Protocol TCP/UDP

Category System & Infrastructure

Security Risk Critical

Port Range Well-Known (0-1023)

What is Port 111?

RPCBind (also called portmapper) maps ONC RPC program numbers to the dynamic ports on which those services are listening. Exposing port 111 on the internet is a well-known critical vulnerability.

TCP/UDP System & Infrastructure Commonly Used

Security Considerations

Port 111 (RPCBind / Portmapper) is classified as critical risk. This port should not be exposed to the public internet. The service transmits data without encryption, making it vulnerable to eavesdropping, credential theft, and man-in-the-middle attacks.

Recommendation: Block this port at the firewall. Use encrypted alternatives (SSH, SFTP, HTTPS) instead.

Related Ports — System & Infrastructure

0 Reserved 1 TCPMUX 5 RJE 7 Echo 9 Discard 11 Systat 13 Daytime 15 NetStat