Internet-Security.com TCP port 2049 details

TCP port 2049 is used by the Network File System (NFS), primarily NFSv4/v4.1/v4.2, which standardize the service on this port.
Server implementations listening on 2049 include the Linux kernel NFS server (nfsd/nfs-utils), FreeBSD and Solaris/Illumos NFS servers, and NAS platforms like NetApp ONTAP, Dell EMC PowerScale/Isilon, Synology DSM, and QNAP QTS.
Cloud NFS services using 2049 include AWS Elastic File System (EFS), Google Cloud Filestore, and Azure NetApp Files.
Clients connecting over 2049 include Linux distributions, macOS, and Windows (Client for NFS), and it’s used by VMware ESXi hosts for NFS datastores.
Orchestrators and platforms often mount NFS via 2049, such as Kubernetes Persistent Volumes (NFS provisioners) and Docker/Podman when using NFS-backed volumes.
pNFS and Kerberos-secured NFS (sec=krb5/krb5i/krb5p) also operate over TCP 2049.
Security: exposed NFS on 2049 is frequently targeted due to misconfigured exports (e.g., world-readable shares or no_root_squash), enabling unauthorized access or privilege escalation.

TCP 2049