1.1 Ports/Protocols Flashcards

Question 1

Q

Define ICMP.

Answer

A

Internet Control Message Protocol, it is a layer 3 protocol encapsulated within IP used for network diagnostics and node recognition.

Question 2

Q

What port does SSH use?

Question 3

Q

What port does DNS use?

Question 4

Q

What port does HTTP use?

Question 5

Q

What port does HTTPS use?

Question 6

Q

What port does SMTP use?

Question 7

Q

What port does SFTP use?

Question 8

Q

What port does SNMP use?

Question 9

Q

What port does FTPS use?

Question 10

Q

What port does FTP use?

Answer

A

TCP/20

TCP/21

Question 11

Q

What are the difference between the two FTP ports?

Answer

A

TCP/20 (data port) is used for transferring data.

TCP/21 (control port) controls the working directory and other control procedures.

Question 12

Q

Who controls the data flow with UDP?

Question 13

Q

Who controls the data flow with TCP?

Question 14

Q

What is the difference between FTPS, and SFTP?

Answer

A

SFTP uses SSH to tunnel FTP through TCP/22.

SFTP is FTP with a SSL/TLS layer through TCP/21.

Question 15

Q

What is the difference between SMTP, SNMP, and ICMP?

Answer

A

SMTP is simple mail transfer protocol, sends data from a client to a mail server or between mail servers. TCP/25. Layer 7.

SNMP is Simple Network Management Protocol, it gathers information from managed devices on an IP network. UDP/161. Layer 7.

ICMP is Internet Control Message Protocol, encapsulated within and considered a part of IP. Used by routers and NICs to send error and diagnostic information. Port-less. Layer 3.

Question 16

Q

What are two common commands that use ICMP?

Answer

A

Ping, uses ICMP’s echo request and reply ability

Traceroute, uses ICMP’s TTL ability.

Question 17

Q

UDP/53

Question 18

Q

TCP/25

Question 19

Q

UDP/161

Question 20

Q

TCP/22

Answer

A

SSH, SFTP

Question 21

Q

TCP/23

Question 22

Q

TCP/993

Question 23

Q

TCP/995

Question 24

Q

TCP/110

Question 25

Q

TCP/143

Question 26

Q

UDP 67, 68

Question 27

Q

What port does DHCP use?

Answer

A

UDP/67 - server

UDP/68 - clients

Question 28

Q

UDP/69

Question 29

Q

TFTP uses what port

Question 30

Q

RDP uses what port

Question 31

Q

NTP uses what port?

Question 32

Q

UDP/123

Question 33

Q

SIP uses what port

Answer

A

5060, 5061 TCP or UDP

Question 34

Q

5060/TCP

Question 35

Q

5061/TCP

Question 36

Q

TCP/445

Question 37

Q

Difference between LDAP, SMB?

Answer

A

Lightweight Directory Access Protocol, stores and retrieves information from a network directory such as users, devices, printers. (Active Directory). Port 389, Port 636.

Server Message Block, file and printer sharing between Windows systems. Port 445.

Question 38

Q

Difference between LDAP, SMB?

Answer

A

Lightweight Directory Access Protocol

Server Message Block

Question 39

Q

TCP/389

Question 40

Q

LDAPS uses what port

Question 41

Q

TCP/636

Question 42

Q

H.323 uses what port?

Question 43

Q

TCP/1720

Question 44

Q

Difference between H.323 and SIP?

Answer

A

H.323 is an older dialing/signaling standard for VoIP. Sets up, maintains, terminates, calls. Port 1720.

SIP is the modernized alternative to H.323 with extended voice communication options such as file transfer and instant messaging. Port 5060/5061.

Question 45

Q

Explain the difference between the SNMP versions.

Answer

A

SNMPv1 = unencrypted, small structured tables.

SNMPv2 = unencrypted, bulk transfers.

SNMPv3 = encryption, authentication, integrity.

Question 46

Q

Explain the difference between the SNMP versions.

Answer

A

SNMPv1 = unencrypted

SNMPv2 = unencrypted

SNMPv3 = encryption, authentication

Question 47

Q

Why is Telnet still useful today excluding legacy systems?

Answer

A

It is supported by almost every sever; it can be used to verify if servers are listening to a particular port

Question 48

Q

NETBIOS uses what port?

Question 49

Q

TCP/139