Is port scanning my own hosted server illegal? Or could I get in trouble

I was testing my firewall using Nmap port scanner to figure out if the Windows firewall was doing its job. I had to work for the last 48 hours and when I came back to do another scan and detect any other ports, I cannot see anything open anymore. The only port the scanner comes back with is Port 53. I had at least 7 more ports to close and now I cannot find them in the scan. Would my hosting service closed these other ports since they may have caught the scanning? Is there another tool anyone recommends to do this? I just cant get hacked or owned I guess they call it. I just read a few articles where this could be illegal? Now I am all nervous! Jeez, I am new to this and just trying to secure our family business.  This will be my wifes website business. Any thoughts would be appreciated.
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Aaron TomoskyDirector of Solutions ConsultingCommented:
Ask your host. Most hosts will just pass all ports but some have different setups between your box as the Internet. No general answer will always be right.
It is not Illegal to do your own port scan on your own network but however, you could get in trouble with your hosted server provider.
Really there is no reason to do a port scan on your hosted server because they have security in place.
If you find that there is a security hole (Network) then you should contact them right away.
It is up to the provider to update and patch the server and network, if needed.
jeffmeverettAuthor Commented:
I did call the hosting service and they said it was no problem scanning. I am not behind the hosting services firewall, they claim they cannot put me behind a hardware firewall either. I do have Windows Firewall running and I only have 6 ports open. Most of which the tech said are usually vital and really cant be closed. The only one in question was 53 and 88. Other than that he said I was really tightly covered and did a great job securing it. I will await to see if any other comments are said and then I will award points and close the thread. THanks!
Discover the Answer to Productive IT

Discover app within WatchGuard's Wi-Fi Cloud helps you optimize W-Fi user experience with the most complete set of visibility, troubleshooting, and network health features. Quickly pinpointing network problems will lead to more happy users and most importantly, productive IT.

Aaron TomoskyDirector of Solutions ConsultingCommented:
I your going to scan your hostin company in the future, best to let them know. Because they don't know that your ip belongs to you, the account owner.
Typically Port 53 is for DNS (Domain Name Service) is used for domain name resolution.  Xbox LIVE uses ports 53 tcp/udp, 80 tcp, 88 udp, 3074 tcp/udp.

Port 88 is also used for Xbox LIVE aswell as Kerberos - authentication system
Here is an explaination of TCP/UDP

TCP ports use the Transmission Control Protocol. TCP is one of the main protocols in TCP/IP networks. Whereas the IP protocol deals only with packets, TCP enables two hosts to establish a connection and exchange streams of data. TCP guarantees delivery of data and that packets will be delivered in the same order in which they were sent. Guaranteed communication is the key difference between TCP and UDP.

UDP ports use the Datagram Protocol, a communications protocol for the Internet network, transport, and session layers. Like TCP (Transmission Control Protocol), UDP is used with IP (the Internet Protocol) and makes possible the transmission of datagrams from one computer to applications on another computer, but unlike TCP, UDP is connectionless and does not guarantee reliable communication; it's up to the application that received the message to process any errors and verify correct delivery.

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
jeffmeverettAuthor Commented:
From what I was able to gather, I would in the future consult your hosting company. Everyone may have a different rule. I would recommend anyone to scan their website thoroughly with a fine toothed comb. I have already been scanned by anti-sec I found in the log. Its more than likely a bot. Those guys are good, real good, be careful all.
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Software Firewalls

From novice to tech pro — start learning today.