3.1 Secure Protocols Flashcards
Well-known ports
Ports 0-1023 are considered well known ports
Registered Ports
Ports 1024-49,151 are considered registered and are usually assigned to proprietary protocols
Dynamic or private ports
Ports 49,152-65,535 can be used by any application
Port 21
FTP File transfer protocol is used to transfer files from host to host
Port 22
SSH, SCP, SFTP: Secure shell is used to remotely administer network devices and systems. SCP is used for secure cpy and SFTP for secure FTP
Port 23
Telnet: Unencrypted method to remotely administer network devices (should not be used)
Port 25
SMTP: Simple mail transfer protocol is used to send email over the internet
Port 53
DNS: Domain name service is used to resolve hostnames to IP’s and IP’s to hostnames
Port 69
TFTP: Trivial FTP is used as a simplified version of FTP to put a file on a remote host, or get a file from a remote host
Port 80
HTTP: Hyper text transfer protocol is used to transmit web page data to a client for unsecured web browsing
Port 88
Kerberos: used for network authentication using a system of tickets within a windows domain
Port 110
POP3: Post office protocol v3 is used to receive email from a mail server
Port 119
NNTP: network news transfer protocol is used to transport Usenet articles
Port 135
RPC/DCOM-scm: Remote procedure call is used to located DCOM ports request a service from a program on another computer on the network
Port 137-139
NetBIOS: used to conduct name querying, sending of dat, and other functions over a NetBIOS connection
Port 143
IMAP: Internet message access protocol is used to receive email from a mail server with more features than POP3
Port 161
SNMP: Simple network management protocol is used to remotely monitor network devices
Port 162
SNMPTRAP: Used to send trap and informrequests to the SNMP manager on a network
Port 389
LDAP: Lightweight directory access protocol is used to maintain directories of users and other objects
Port 443
HTTPS: Hyper text transfer protocol secure is used to transmit web page data to a client over an encrypted SSL connection
Port 445
SMB: Server message block is used to provide shared access to files and other resources on a network
Port 465/587
SMTP with SSL/TLS: Simple mail protocol used to send email over the internet with an SSL and TLS secured connection
514
Syslog: Used to conduct computer message logging, especially for routers and firewall logs
636
LDAP SSL/TLS: Used to maintain directories of users and other objects over an encrypted SSL/TLS connection
860
iSCSI: used for linking data storage facilities over IP
989/990
FTPS: File transfer protocol secure is used to transfer files from host to host over an encrypted network
993
IMAP4 with SSL/TLS: Internet message access protocol is used to receive email from a mail server over an SSL/TLS encrypted connection
995
POP3 SSL/TLS: Post office protocol version 3 used to receive email from a mail server over SSL/TLS
1433
Ms-sql-s: Microsoft sql server is used to receive SQL database queries from clients
1645/1646
RADIUS: remote authentication dial-in user service is used for authentication and authorization (1645) and accounting (1646)
1701
L2TP: Layer 2 tunnel protocol is used as an underlying VPN protocol but has no security
1723
PPTP: point to point tunneling protocol underlying VPN protocol with built in security
1812/1813
RADIUS: remote authentication dial-in user service is used for authentication and authorization (1812) and accounting (1813)
3225
FCIP: fibre channel IP is used to encapsulate fibre channel frames within TCP/IP packets
3260
iSCSI target: used for linking data storage facilities over IP
3389
RDP: Remote desktop protocol is used to remotely view and control other windows systems via a GUI
3868
Diameter: a more advanced AAA protocol that is a replacement for RADIUS
6514
Syslog over TLS: It is used to conduct computer message logging, routers and firewall logs, over a TLS encrypted connection