OBJ 1.5 X

Question 1

File Transfer Protocol (FTP) 20/21

Answer 1

▪ Transfers computer files between a client and server on a computer
network
▪ Unsecure method
▪ Data transferred in the clear

Question 2

Secure Shell (SSH) 22

Answer 2

▪ Cryptographic network protocol for operating network services securely
over an unsecured network
▪ Best known for remote login to computer systems by users

Question 3

Secure File Transfer Protocol (SFTP) 22

Answer 3

▪ Provides file access, file transfer, and file management over any
reliable data stream

Question 4

Telnet 23

Answer 4

▪ Provides bidirectional interactive text-oriented communication facility
using a virtual terminal connection
▪ Like SSH, but insecure

Question 5

Simple Mail Transfer Protocol (SMTP) 25

Answer 5

▪ Internet standard for sending electronic mail
▪ RFC 821 was defined originally in 1982
▪ RFC 5321 developed in 2008 (current version)

Question 6

Domain Name System (DNS) 53

Answer 6

Hierarchical decentralized naming system for computers, services, or
other resources connected to the Internet or a private network
▪ Converts domain names to IP addresses

Question 7

Dynamic Host Configuration Protocol (DHCP) 67/68

Answer 7

▪ DHCP server dynamically assigns an IP address and other network
configuration parameters to a client
▪ Enables computers to request IP addresses and networking parameters
automatically?
▪ Reduces burden on network administrators

Question 8

Trivial File Transfer Protocol (TFTP) 69

Answer 8

▪ Transmits files in both directions of a client-server application
▪ Used for booting an operating system from a local area network file
server
▪ Doesn’t provide user authentication or directory visibility
▪ Essentially a stripped-down version of FTP

Question 9

Hypertext Transfer Protocol (HTTP) 80

Answer 9

▪ Foundation of data communication for WWW
▪ Designed for distributed, collaborative, and hypermedia presentation
across many devices

Question 10

Post Office Protocol v3 (POP3) 110

Answer 10

▪ Used by local e-mail clients to retrieve e-mail from a remote server over
TCP/IP connection

Question 11

Network Time Protocol (NTP) 123

Answer 11

▪ Provides clock synchronization between computer systems over packetswitched, variable-latency data networks
▪ Created in 1985, one of the oldest Internet protocols in current use

Question 12

Internet Message Access Protocol (IMAP) 143

Answer 12

▪ Provides e-mail clients to retrieve e-mail messages from a mail server
over a TCP/IP connection
▪ Allows the end user to view and manipulate the messages as if they’re
stored locally

Question 13

Simple Network Management Protocol (SNMP) 161/162

Answer 13

▪ Provides collection and organization of information about managed
devices on IP networks
▪ Can modify that information to change device behavior, commonly used
in network devices

Question 14

Lightweight Directory Access Protocol (LDAP) 389

Answer 14

Open, vendor-neutral, industry standard for accessing and maintaining
distributed directory information services
▪ LDAP and Active Directory use this port

Question 15

Hypertext Transfer Protocol Secure (HTTPS) [Secure Sockets Layer (SSL)] 443

Answer 15

▪ Foundation of ecommerce on WWW
▪ Designed for adding security to the insecure HTTP protocol

Question 16

Server Message Block (SMB) 445

Answer 16

Provides shared access to files, printers, and miscellaneous
communications between devices on a network

Question 17

Syslog 514

Answer 17

Used to send logging data back to a centralized server

Question 18

SMTP TLS 587

Answer 18

▪ Secure and encrypted way to send emails

Question 19

Lightweight Directory Access Protocol (over SSL) (LDAPS) 636

Answer 19

▪ Open, vendor-neutral, industry standard for accessing and maintaining
distributed directory information services
Provides secure directory services

Question 20

IMAP over SSL 993

Answer 20

▪ Secure and encrypted way to receive emails

Question 21

POP3 over SSL 995

Answer 21

▪ Secure and encrypted way to receive emails

Question 22

Structured Query Language (SQL) Server 1433

Answer 22

▪ Used for communication from a client to the database engine

Question 23

SQLnet 1521

Answer 23

Used for communication from a client to an Oracle database

Question 24

MySQL 3306

Answer 24

Used for communication from a client to the MySQL database engine

Question 25

Remote Desktop Protocol (RDP) 3389

Answer 25

Proprietary protocol developed by Microsoft
▪ Provides a user with a graphical interface to connect to another
computer over a network connection
▪ User employs RDP client software for this purpose and the other
computer must run RDP server software

Question 26

Session Initiation Protocol (SIP) 5060/5061

Answer 26

Provides signaling and controlling multimedia communication sessions in
applications
▪ Used for Internet telephony for voice and video calls, VOIP, and instant
messaging

Question 27

Internet Control Message Protocol (ICMP)

Answer 27

A network level protocol that is used to communicate information about network connectivity issues back to the sender.
▪ ICMP is used a lot by network technicians during troubleshooting, but it is also used by attackers to conduct ping scans and network mapping

Question 28

Generic Routing Encapsulation protocol (GRE)

Answer 28

A tunneling protocol that was developed by Cisco to encapsulate a wide
variety of network layer protocols inside a virtual point-to-point or pointto-multipoint link over an Internet Protocol network
▪ Important to set a smaller maximum transmission unit or MTU size on
the tunnel
▪ It does not provide any encryption

Question 29

Internet Protocol Security protocol (IPsec)

Answer 29

▪ Set of secure communication protocols at the network or packet
processing layer that is used to protect data flows between peers

Question 30

Authentication Header (AH)

Answer 30

o A protocol within IPSec that provides integrity and
authentication

Question 31

Encapsulating security payload (ESP)

Answer 31

o Provides encryption and integrity for the data packets sent over IPsec
o Backwards-compatible with most IP routers including those that were not designed to work with IPsec initially