Layer 7 Protocols Flashcards
Remote Desktop Protocol (RDP)
Allows you to remote and interact with a remote desktop/server
RDP port
TCP 3389
Telnet
Provides user a command prompt on a remote device
All communication is in clear text
Telnet port
TCP 23
Secure Shell (SSH)
Encrypted replacement for Telnet
Also known as Secure Socket shell
SSH port
TCP 22
Virtual Networking Computing (VNC)
Open source desktop sharing/remote control system
Server component of VNC is on the computer that you want to control
Client component of VNC runs on the computer you will use to make the connection
VNC port
TCP 5900
TCP 5800 for web client
Server Message Block (SMB)
Microsoft File and Print protocol
Used to access folders, drivers, and printers
SMB port
TCP 445
File Transfer Protocol (FTP)
All communication is in clear text
FTP ports
Command port = TCP 21
Data port = TCP 20
Secure File Transfer Protocol (SFTP)
Also called SSH File Transfer Protocol
Encrypts file tranfer
SSH port
TCP port 22
Trivial File Transfer Protocol (TFTP)
Simplified version of FTP
No authentication
All communication is in clear text
Network File System (NFS)
File sharing protocol for Unix/Linux
Hypertext Transfer Protocol (HTTP)
Used to carry web traffic
Transmissions are in clear text
HTTP port
TCP 80
Hypertext Transfer Protocol Secure (HTTPS)
HTTP over SSL
HTTPS port
TCP 443
Simple Mail Transfer Protocol (SMTP)
Mail transmission
Transmissions are in clear text
SMTP port
TCP 587
Post Office Protocol (POP3)
Retrieve email
Emails are downloaded locally and removed from the email server
POP3 port
110
993 over SSL
Internet Message Access Protocol (IMAP4)
Retrieve email
Messages stay on email server
IMAP4 port
TCP 143
993 over SSL
Structured Query Language (SQL)
Language used to communicate with relational database
SQL Server port
TCP 1433
SQLnet port
TCP 1521
MySQL port
TCP 3306
Who provides MSSQL?
Microsoft
Who provides SQLnet?
Oracle
Who provides MySQL?
Open source
Session Initiation Protocol (SIP)
Establishes, manages, and tears down VoIP calls and multimedia conferences
SIP port
5060 - Unencrypted
5061 - Encrypted
Syslog
Send system log or event messages to a server (syslog server)
Syslog port
TCP 514
Simple Network Management Protocol (SNMP)
Used to monitor and manage network-connected devices in an IP network
Dynamic Host Configuration Protocol (DHCP)
Automated way to assign IP address to hosts on a network
DHCP port
server port = UDP 67
client port = UDP 68
DHCP scope
Set of configurations for a particular network segment
Defined by IP range and subnet mask
Contains the pool of addresses that can be leased to clients
DHCP lease time
The length of time (in days or hours) that a client may use the IP address
DHCP Exclusion range
IP addresses in a subnet range that are set aside for static configuration
DHCP Relay
A hardware device or software program that can pass DHCP or BOOTP messages between DHCP clients and servers
Necessary if the DHCP server is on a different subnet from its clients
DHCP scope options
Address of default gateway
Domain name to be used
Address of the WINS server
NetBIOS node type
Lease times
Reservations
Exclusions