What This Port Does
Port 2185 is registered with IANA under the service name onbase-dds — OnBase Distributed Disk Services. It belongs to Hyland Software's OnBase platform, one of the larger enterprise content management (ECM) systems in use at hospitals, universities, insurance companies, and government agencies.1
The "Distributed Disk Services" component handles how OnBase moves documents between storage nodes in a distributed deployment. When an organization stores tens of millions of documents — invoices, medical records, contracts, student transcripts — and needs those documents accessible across multiple servers and locations, DDS is the routing layer that makes that work. Port 2185 is the door that traffic uses.
The Range It Lives In
Port 2185 falls in the registered ports range (1024–49151). These ports are not owned by IANA the way the well-known ports (0–1023) are. Instead, organizations can apply to IANA to have their service officially associated with a number, which prevents two applications from accidentally claiming the same port.
Hyland registered onbase-dds at 2185 to give their enterprise deployments a predictable, documented port for firewall rules and network configuration. Without a registration, IT teams at every OnBase customer would have to negotiate an arbitrary port themselves — and document it themselves, and defend it to security teams themselves. The registration is a small act of coordination that saves a lot of organizational friction.
Who Uses It
OnBase is deployed at institutions that deal in large volumes of sensitive documents: healthcare systems managing patient records, county governments processing permits and court documents, universities handling student files, insurance companies routing claims. If you've ever submitted paperwork to a large bureaucracy and had it "in the system," there's a reasonable chance OnBase touched it.
Port 2185 is internal infrastructure — it communicates between OnBase servers within a private network, not with end users directly. It should not be exposed to the public Internet.
How to Check What's Listening
If you're auditing a server and want to know whether something is running on port 2185:
Linux/macOS:
Windows:
If you see a process listening on this port on a server that isn't supposed to be running OnBase, that warrants investigation.
Security Notes
Because OnBase handles sensitive documents, any exposure of port 2185 to untrusted networks is a risk worth taking seriously. In a correctly configured OnBase deployment, this port should be:
- Accessible only within the internal network or between specific application servers
- Blocked at the perimeter firewall
- Monitored for unexpected connections
An exposed port 2185 is less likely to be targeted by opportunistic scanners (who focus on well-known ports) but is still a surface that shouldn't be open.
Frequently Asked Questions
Apakah halaman ini membantu?