The Port Range
Port 60058 exists in the dynamic or ephemeral port range: 49152–65535. 1
These ports are unregistered and uncontrolled by IANA. They're the Internet's temporary doors. The operating system assigns them automatically to applications that need outbound connections. They're meant to be used once, briefly, then abandoned. No two instances need to agree on what they're for. No RFC defines them. They're the opposite of port 443's stability or port 22's certainty.
What Commonly Uses Port 60058
If you see port 60058 listening on a Windows system, it's almost certainly your DNS server.
Windows DNS uses a security feature called DNS query randomization. 2 Instead of sending all DNS queries from a single source port, the DNS server opens a socket pool—a range of hundreds or thousands of ephemeral ports—and distributes queries across them randomly. This makes it drastically harder for an attacker to predict which port a legitimate query will come from, rendering DNS spoofing attacks nearly useless. 2
Port 60058 is one of many ports in that socket pool. The default pool size is 2,500 sockets, and Windows DNS fills them with ports in the dynamic range.
Other applications occasionally use ports in this range for temporary purposes: WebRTC for real-time communication, NTP clients making queries, or any software that needs an outbound connection and doesn't care which local port it uses.
How to Check What's Listening
On Windows:
or the newer command:
On macOS/Linux:
or:
If you see DNS.exe or svchost.exe using it, that's your DNS server. If you see something else, investigate the process ID to understand what's happening.
Why Unassigned Ports Matter
The ephemeral range exists because the Internet needed flexibility. Well-known ports (1–1023) are for established protocols. Registered ports (1024–49151) are for applications to claim identity. But most applications don't need that permanence. They need a temporary address to send data from, use it once, and move on.
Port 60058's lack of official assignment is the entire point. It's not a port with a story yet. It's the port that proves the system works—that there are billions of addresses ready to be used, then released, then used again. It's the background infrastructure that makes the foreground protocols possible.
The irony: DNS, the Internet's most fundamental naming system, hides inside the unnamed range. Port 53 (DNS) is famous. Port 60058 is invisible. But they work together—one resolves names, one randomizes queries to protect against attacks. Neither could work at full strength without the other.
Cette page vous a-t-elle été utile ?