SCADA & ICS Network Ports Reference

PacketViper’s OT360 platform uses this port intelligence natively, applying inline enforcement and deceptive responders against exactly these protocols — without requiring agents or configuration changes to existing OT equipment.

Core SCADA / ICS Protocols and Ports

Protocol	Port(s)	Transport	Description
Modbus TCP	502	TCP	The most widely used ICS protocol. Provides direct, unauthenticated access to PLC registers and coils. Controls and monitors industrial equipment in manufacturing, energy, and utilities.
Siemens S7	102	TCP	Proprietary S7 Communication protocol used by Siemens S7-series PLCs. Enables read/write of process data and program blocks without authentication by default.
DNP3	20000	TCP/UDP	Distributed Network Protocol 3, used extensively in electric utilities and water treatment facilities. Supports time-stamped data and designed for noisy, unreliable communication links.
EtherNet/IP	44818, 2222	TCP/UDP	Industrial Ethernet standard widely deployed in manufacturing automation by Rockwell Automation (Allen-Bradley) and General Electric.
BACnet/IP	47808	UDP	Building Automation and Control network protocol for HVAC, lighting, fire detection, and access control systems.
IEC 60870-5-104 (IEC-104)	2404	TCP	Part of the IEC 60870 standard for SCADA in power systems. Widely used by electric utilities across Europe and Asia.
OPC UA Discovery	4840	TCP	Standard discovery port for OPC UA servers. Allows clients to locate OPC UA endpoints on the network.
OPC UA XML	80, 443	TCP	OPC UA communication over HTTP/HTTPS for traversal through web proxies and firewalls.
PROFINET	34962-34964	TCP/UDP	Industrial Ethernet standard from Siemens and PROFIBUS organization. Used in real-time automation for manufacturing and process industries.
EtherCAT	34980	UDP	High-performance Ethernet-based fieldbus for motion control and real-time automation in robotics and CNC machinery.
Foundation Fieldbus HSE	1089-1091	TCP/UDP	High-Speed Ethernet component of the Foundation Fieldbus standard for process automation in chemical, oil, and gas industries.
Tridium Niagara Fox	1911, 4911	TCP	Proprietary Fox protocol from Tridium’s Niagara framework, found in building automation systems at offices, universities, and hospitals.
Red Lion Controls	789	TCP	Crimson v3.0 protocol used by Red Lion Controls G306a HMI devices for SCADA communication.
ICCP / IEC-102	102	TCP	Inter-Control Center Communications Protocol for data exchange between electric utility control centers.
ROC Plus (Emerson/Fisher)	4000	TCP/UDP	Protocol used by Emerson Fisher ROC RTUs in oil and gas pipeline monitoring and control.
FL-net	55000-55003	UDP	Japanese industrial Ethernet standard used in factory automation by FANUC and Mitsubishi.
PCWorx (Phoenix Contact)	20547, 2455, 9600	TCP	Protocol and programming environment by Phoenix Contact for process control and industrial automation.
HART-IP	5094	TCP/UDP	Highway Addressable Remote Transducer Protocol over IP. Communicates over legacy 4-20mA wiring alongside digital signals.
OSIsoft PI Server	5450	TCP	PI data historian widely used in energy, utilities, and manufacturing for operational data collection.
Johnson Controls Metasys N1	11001	TCP/UDP	Legacy N1 network protocol for Johnson Controls Metasys building automation systems.
Iconics Genesis32 GenBroker	18000	TCP	Communication port for Iconics Genesis32 SCADA software used in energy and facilities management.
Foxboro DCS FoxApi	55555	TCP/UDP	Foxboro Distributed Control System API port for the Foxboro Evo and I/A Series process automation platforms.
Foxboro DCS AIMAPI	45678	TCP/UDP	AIM API port for Foxboro DCS alarm and event management integration.
SNC GENe	38000-38001, 38011-38015, 62900-63094, 65443	TCP	Energy management system ports used in utility control center SCADA and EMS applications.
Telvent OASyS DNA	5050-5052, 5065, 12135-12137, 56001-56099	TCP/UDP	Telvent OASyS DNA SCADA/EMS platform for oil, gas, and electric utility pipeline management.
Siemens Spectrum Power TG	50001-50028, 50110-50111	TCP/UDP	Siemens energy management system for transmission grid control applications.
ABB Ranger 2003	10307-10450, 12316, 12645-12648, 13722-13783	TCP	ABB Ranger 2003 SCADA platform for electric transmission and distribution management.

OTR Context Group Configuration

The following port ranges are formatted for direct import into PacketViper’s OTR (Operational Traffic Rules) Context Groups. Copy and paste each line into the Context Group configuration on your OTR device to apply targeted monitoring and enforcement policies to SCADA and ICS traffic.

80,102,443,502,530,593,789/tcp
1089-1091,1541,1911,1962,2404/tcp
2455,4000,4840,4911,5052,5450,5065,9600/tcp
10307,10311,10364,10365,10407/tcp
10409-10410,10412,10414-10415,10428/tcp
10431,10432,10447,10449,10450,11001,12135-12137,12316/tcp
12645,12647,12648,13722,13724,13782,13783/tcp
18000,20547,34962,34964/tcp
38000-38001,38011-38012/tcp
38014-38015,38200,38210,38301,38400,38700/tcp
38589,38593,38600,38971,39129,39278/tcp
44818,45678,46824,47808,50001-50016/tcp
50018-50020,50025-50028/tcp
50110-50111,55555/tcp
56001-56099/tcp
62900,62911,62924/tcp
62930,62938,62956-62957,62963/tcp
62981-62982,62985,62992,63012/tcp
63027-63036,63041,63075,63079/tcp
63082,63088,63094,65443/tcp
1089-1091,1451,2222,4000,11001,20000/udp
34980,44818,45678,47808/udp
55000-55003,50020,50021,55555/udp
5050-5051/udp

PacketViper’s OT360 platform applies these port signatures inline — monitoring, blocking, and deploying deceptive responders against unauthorized access attempts on any of the above ports without disrupting legitimate OT communications. This provides a protocol-native compensating control for legacy ICS environments that cannot be patched or upgraded.

---

Download the Full SCADA/ICS Port Reference

This reference is available as a PDF for offline use, firewall configuration reviews, and security documentation.

Download: Known SCADA / ICS Network Ports — Complete Reference (PDF)