2.1 - Compare and contrast TCP and UDP ports, protocols and their purposes.

Question 1

FTP

Answer 1

File transfer protocol.

TCP/20 - Active mode data port.

TCP/21 - Control of communication.

Transfers files between systems.

Question 2

SSH

Answer 2

Secure Shell

TCP/22

Encrypted communication link.

Looks and acts the same as Telnet.

Question 3

Telnet

Answer 3

Telecommunication network

TCP/23

Login to devices remotely

Console access

No encryption - “In the clear”

Question 4

SMTP

Answer 4

Simple Mail Transfer Protocol

TCP/25

Server to server email transfer.

Also used to send mail from a device to a mail server.

Question 5

DNS

Answer 5

Domain Name System

UDP/53

Converts names to IP addresses.

Usually multiple DNS servers are in production.

Question 6

HTTP and HTTPS

Answer 6

Hyper Text Transfer Protocol (S - Secure)

TCP/80 - HTTP

TCP/443 - HTTPS

Web server Communication with or without encryption.

Question 7

POP and IMAP

Answer 7

Post Office Protocol and Internet Message Access Protocol.

TCP/110 - Post office protocol Version 3 (POP3)
-Basic mail transfer functionality.

TCP/143 - Internet Message Access Protocol Version 4 (IMAP4)
-Includes management of email inbox from multiple client.

Receive emails from an email server.
-Authenticate and transfer.

Question 8

RDP

Answer 8

Remote Desktop Protocol

TCP/3389

Share a desktop from a remote location.

Question 9

SMB

Answer 9

Server Message Block

TCP/445 - Direct communications (NETBIOS-Less)
- Direct SMB communication over TCP without the NetBIOS transport.

Protocol used by Microsoft Windows.
File sharing, Printer Sharing.

Also called CIFS (Common Internet File System)

Question 10

AFP

Answer 10

Apple Filing Protocol

TCP/548 - File services in MacOS

File management - Copy, move, delete files etc.
Works in conjunction with SLP (Service Location Protocol).

Question 11

DHCP

Answer 11

Dynamic Host Configuration Protocol

UDP/67 , UDP/68

Automated configuration of IP address, subnet mask and other options.

requires a DHCP server.

DORA - Discover, Offer, Request, Acknowledge.

Question 12

LDAP

Answer 12

Lightweight Directory Access Protocol

TCP/389

Store and retrieve information in a network directory.

Commonly used in Microsoft Active Directory.

Question 13

SNMP

Answer 13

Simple Network Management Protocol

UDP/161 - Queries

UDP/162 - Traps

Version 3 - A secure standard

• Message integrity
• Authentication
• Encryption

Gather statistics from network devices.

Question 14

SLP

Answer 14

Service Location Protocol

TCP/427 and UDP/427

Populates the list of available devices.
Works in conjunction with AFP.

Question 15

NetBIOS

Answer 15

UDP/137 - Name service.
Register, remove, and find Windows services by name.

UDP/138 - Datagram Service
Windows connectionless data transfer.

TCP/139 - Session Service
Windows connection oriented data transfer.

Allows legacy computer applications relying on the NetBIOS API to be used on modern TCP/IP networks.

Question 16

TCP

Answer 16

Transmission Control Protocol

Connection-oriented.
Formal connection setup and close.

“Reliable” delivery.
Error recovery.
Can manage out of order messages or retransmissions.

Flow control.
Receiver can manage how much data is sent.

Question 17

TCP and UDP

Answer 17

Protocols both transported inside of IP.

Two ways to move data from A to B.

OSI layer 4 - The transport layer.

Both a form of and use multiplexing.
Use many different applications at the same time.

Question 18

UDP

Answer 18

User Datagram Protocol

Connectionless.
No formal open or close to the connection.

“Unreliable” delivery.
No error recovery.
No reordering of data or retransmissions.

No flow control.
Sender determines the amount of data transmitted.