9000 SonarQube / PHP-FPM / PortainerSonarQube, PHP-FPM, Hadoop NameNode, ClickHouse, Portainer and others.
Highly overloaded — identify the service before opening.
| Transport | Status | Meaning |
|---|---|---|
| TCP | Unofficial | Not assigned by IANA, but standardized, specified, or widely used on this port. |
| UDP | Unofficial | Not assigned by IANA, but standardized, specified, or widely used on this port. |
| SCTP | — | Not applicable for this transport. |
| DCCP | — | Not applicable for this transport. |
Registered (1024–49151). Assigned by IANA on request; usable without elevated privileges on most systems.
Browse all ports →
Copy-ready inbound rules for the active transports. Replace every <source> placeholder with the specific host, subnet, or CIDR that should reach this port.
sudo ufw allow proto tcp from <source> to any port 9000
Allow TCP 9000 (SonarQube / PHP-FPM / Portainer). Replace <source> with the network/host that should reach it.
sudo ufw allow proto udp from <source> to any port 9000
Allow UDP 9000 (SonarQube / PHP-FPM / Portainer). Replace <source> with the network/host that should reach it.
sudo firewall-cmd --permanent --add-rich-rule='rule family="ipv4" source address="<source>" port port="9000" protocol="tcp" accept'
Allow TCP 9000 (SonarQube / PHP-FPM / Portainer) from <source>. Run 'firewall-cmd --reload' afterwards.
sudo firewall-cmd --permanent --add-rich-rule='rule family="ipv4" source address="<source>" port port="9000" protocol="udp" accept'
Allow UDP 9000 (SonarQube / PHP-FPM / Portainer) from <source>. Run 'firewall-cmd --reload' afterwards.
nft add rule inet filter input ip saddr <source> tcp dport 9000 accept
Allow TCP 9000 (SonarQube / PHP-FPM / Portainer). Assumes table 'inet filter' with an 'input' chain.
nft add rule inet filter input ip saddr <source> udp dport 9000 accept
Allow UDP 9000 (SonarQube / PHP-FPM / Portainer). Assumes table 'inet filter' with an 'input' chain.
sudo iptables -A INPUT -p tcp -s <source> --dport 9000 -j ACCEPT
Allow TCP 9000 (SonarQube / PHP-FPM / Portainer). Persist with iptables-save/netfilter-persistent.
sudo iptables -A INPUT -p udp -s <source> --dport 9000 -j ACCEPT
Allow UDP 9000 (SonarQube / PHP-FPM / Portainer). Persist with iptables-save/netfilter-persistent.
az network nsg rule create -g <resource-group> --nsg-name <nsg> -n Allow-sonarqubephpfpmportainer-9000 --priority 1000 --access Allow --direction Inbound --protocol "*" --source-address-prefixes <source> --destination-port-ranges 9000
Inbound rule for 9000 (SonarQube / PHP-FPM / Portainer). Set <source> to a CIDR; lower priority number = higher precedence.
aws ec2 authorize-security-group-ingress --group-id <sg-id> --ip-permissions IpProtocol=tcp,FromPort=9000,ToPort=9000,IpRanges="[{CidrIp=<source-cidr>}]"
Inbound TCP 9000 (SonarQube / PHP-FPM / Portainer). Replace <source-cidr> (e.g. 10.0.0.0/16).
aws ec2 authorize-security-group-ingress --group-id <sg-id> --ip-permissions IpProtocol=udp,FromPort=9000,ToPort=9000,IpRanges="[{CidrIp=<source-cidr>}]"
Inbound UDP 9000 (SonarQube / PHP-FPM / Portainer). Replace <source-cidr> (e.g. 10.0.0.0/16).
gcloud compute firewall-rules create allow-sonarqubephpfpmportainer-9000 --direction=INGRESS --action=ALLOW --rules=tcp:9000,udp:9000 --source-ranges=<source-cidr> --network=<network>
Ingress rule for 9000 (SonarQube / PHP-FPM / Portainer). Scope with --source-ranges and optionally --target-tags.
netsh advfirewall firewall add rule name="Allow SonarQube / PHP-FPM / Portainer 9000/TCP" dir=in action=allow protocol=TCP localport=9000 remoteip=<source>
Inbound TCP 9000 (SonarQube / PHP-FPM / Portainer). Set remoteip to a host/subnet; 'any' is discouraged.
netsh advfirewall firewall add rule name="Allow SonarQube / PHP-FPM / Portainer 9000/UDP" dir=in action=allow protocol=UDP localport=9000 remoteip=<source>
Inbound UDP 9000 (SonarQube / PHP-FPM / Portainer). Set remoteip to a host/subnet; 'any' is discouraged.
New-NetFirewallRule -DisplayName "Allow SonarQube / PHP-FPM / Portainer 9000/TCP" -Direction Inbound -Action Allow -Protocol TCP -LocalPort 9000 -RemoteAddress <source>
Inbound TCP 9000 (SonarQube / PHP-FPM / Portainer). Replace <source> with a host or subnet.
New-NetFirewallRule -DisplayName "Allow SonarQube / PHP-FPM / Portainer 9000/UDP" -Direction Inbound -Action Allow -Protocol UDP -LocalPort 9000 -RemoteAddress <source>
Inbound UDP 9000 (SonarQube / PHP-FPM / Portainer). Replace <source> with a host or subnet.
Rules are generated only for transports marked active for this port. They default to an inbound allow with an explicit source placeholder — never any. Review direction, scope, and rule precedence before applying in production.