1.1 Explain the purposes and uses of ports and protocols.

Question 1

SSH

Answer 1

Port 22 TCP or UDP. Securely transfer data.
Terminal Access: Works at CMD.
Remote in via command line.
Used by Secure copy protocol (SCP) (port 22), and SFTP (port 22).
Supports tunneling. Takes a protocol and encapsulates it in a SSH connection.

Question 2

DNS

Answer 2

UDP Port 53.
Uses UDP cause it wants to have it’s network connections open.
Translate Domain names into IP addresses.
Uses a higher achy.
structure of levels of domains.
Top level - .com .org

Question 3

SMTP

Answer 3

TCP Port 25. Layer 7 TCP/IP protocol. Only handles that outgoing (sent) messages.
Standardized messaging format. Header, IP address of sender.
Subject.
Relaying. One mail server can forward messages to multiple email servers.

Question 4

SFTP

Answer 4

TCP Port 22. Since SFTP runs over the SSH protocol as a subsystem, SFTP uses port 22 by default.
Secure File Transfer Protocol (SFTP) is a network protocol for securely accessing, transferring and managing large files and sensitive data.
Two ways to authticate with SFTP. Password or public key.
can be used for time stamping. records Date and time of, file type and size.

Question 5

FTP

Answer 5

A service. TCP 20, 21
20 file transfers
21 send commands and responses through CMD.
Not secure.
Used for shared file in corporate network
and data from web servers.

Question 6

TFTP

Answer 6

69 UDP
Simpler file transfer protocol. Not encrypted.
Read and Write services.
Can use block transfers.

Question 7

TELNET

Answer 7

23 TCP can remote into devices. Not encrypted. Can be done through command line.
Quick remote access.

Question 8

DHCP

Answer 8

67, 68 UDP 7 layer
Assign IP address to network devices.
Uses UDP because service needs to be always open.

Question 9

HTTP

Answer 9

Port 80, TCP. Unencrypted.
Stateless - each request from client to server is independent. Server can handle multiple clients.
Protocol which is used to transfer info between web clients and web server. Hypertext Transfer Protocol

Question 10

HTTPs

Answer 10

port 443 TCP

Question 11

Alternative port for HTTP.

Answer 11

8080

Question 12

SNMP

Answer 12

Port 161 and 162 USP. Simple Network Management Protocol.
Monitor network devices. See how they are preforming.
Power supply ok? Issues with storage?
Protocol for collecting and organizing information about managed devices on IP networks.
SNMP V3 is most current.

Question 13

RDP

Answer 13

3389 TCP. Establish connections remotely.

Question 14

NTP

Answer 14

123 udp. Always want to have open. used to sync date and time on all network devices.
uses stratum levels. Accuracy in atomic or GPC clocks. this is used to ensure correct time.

Question 15

SIP

Answer 15

TCP and UDP. 5060, 5061 Session Initiation Protocol. Enables VOip over IP networks.

Question 16

SMB

Answer 16

Service. 455 TCP

Server Message Block (SMB) is a network communication protocol used for providing shared access to files, printers, and serial ports among nodes on a network.

Question 17

POP

Answer 17

110

Question 18

IMAP

Answer 18

TCP Port 143. Secure communications. Internet Message Access Protocol. Retrieval of email which has advantages over pop3.
Synchronization. Allows you to retrieve your emails from any device. as long as your logged in correctly.
Folder strucurre. Create rename and dlete email folders.

Question 19

LDAP

Answer 19

TCP 389.
Directory. centralized location we can use to store all info on users and data.

Question 20

SMTP

Answer 20

25 sents email.

Question 21

Kerberos

Answer 21

88 TCP or UDP. Default authorization/ Authentication technology in Microsoft Windows.

Question 22

TACACS+

Answer 22

49 TCP remote authentication

Question 23

pop3

Answer 23

UDP 110. Post office Protocol. retrieves emails from email servers. 110 receives email. Uses Client Server Architecture.
Only a retrieval protocol.
Not encrypted.

Question 24

Network socket address

Answer 24

IP address and Port number it is sending or receiving on
192.168.4.24 : 80

Question 25

ICMP provides

Answer 25

provides info and error reporting to devices.

Question 26

Windows ssh is called

Answer 26

OpenSSH. A connectivity tool for remote sign-in that uses the SSH protocol

Question 27

TCP three-way handshake

Answer 27

How TCP establisjed a connectiob between a source and destination.

SYN, SYN-ACK, and ACK

Question 28

HTTP uses which layer

Answer 28

7

Question 29

which protocol is http directly encapsulated in?

Answer 29

TCP

Question 30

Which protocol is DHCP directly encapsulated in?

Answer 30

UDP

Question 31

TCP

Answer 31

A service. Uses connection oreinted sessions. A beginning and a end to that data transmission connection. Also known as a three way handshake.

Question 32

HTTPs transfers data in

Answer 32

cipher text (encrypted text)

Question 33

which protocol is used for info and error erporting

Answer 33

ICMP

Question 34

What is the purpose of ports

Answer 34

to represent a logical way for traffic to move into and out of a program or service on a machine.

Question 35

which osi layer do TCP and UDP headers use to correspond with a program or service on a machine?

Answer 35

Layer 4

Question 36

which port do web servers listen for informing traffic and send their own traffic.

Answer 36

Port 80

Question 37

Clear Text Protocal

Answer 37

Unecrypted data.

Question 38

text based protocal

Answer 38

unencrypted.

Question 39

DNS records

Answer 39

A Records. IP address.
MX records:
NS Records
AAAA IPv6 records

Question 40

DNS Cashing

Answer 40

A DNS feature. DNS server will store most recent query regarding domain names.

Question 41

TTL

Answer 41

DNS feature. The amount of time that dns record considers to be vaild.

Question 42

what is a URL

Answer 42

Uniform Resource Locator, is essentially the address of a web page on the internet.

Question 43

HTTPS can use which two versions of encryption protocols

Answer 43

SSL or TLS.
Depending on the type of protocol. It will determine the certificates we use.

Question 44

syslog

Answer 44

Syslog is a protocol used for system management and security auditing of network devices.

Question 45

SMTP TLS

Answer 45

SMTP TLS refers to the use of Transport Layer Security (TLS) as a way to encrypt and secure SMTP communications.

Question 46

LDAP SSL

Answer 46

LDAP over SSL, often referred to as LDAPS, is a method of securing LDAP communication by encrypting the data with Secure Sockets Layer (SSL) or its successor, Transport Layer Security (TLS).

Port 636

Question 47

IMAP and POP3 SSL

Answer 47

IMAP (Internet Message Access Protocol) and POP3 (Post Office Protocol 3) are both email retrieval protocols used to access messages from a mail server. When combined with SSL (Secure Sockets Layer), they provide a secure method of email communication by encrypting the data transmitted between the email client and the mail server.

Here’s a brief overview of each protocol with SSL:

• IMAP with SSL: IMAP is designed for accessing and managing emails from multiple devices, keeping the messages on the server. When using SSL, IMAP typically operates over port **993
• POP3 with SSL:995

Question 48

SQL

Answer 48

create relational databases

Question 49

SQL server

Answer 49

UDP 1433. a protocol service. Database that assessable on some server.
Always want users to have access to our database.M

Question 50

MySQL

Answer 50

UDP 4306

Question 51

SQLNet

Answer 51

SQL*Net facilitates communication between a client application and an Oracle Database, or between multiple databases over a network.
UDP 1512