Ports & Protocols

Question 1

Port

Answer 1

Virtual entry / exit point for communications used by software applications to exchange information; #0 through 65,535

Question 2

Protocol

Answer 2

set of rules & conventions for data exchange between network devices

Question 3

Well Known Ports

Answer 3

0 through 1,023; FTP, SMTP, HTTP, HTTPS

Question 4

Registered Ports

Answer 4

1,024 through 49,151; Used by users and systems through the Internet Assigned Numbers Authority (IANA)

Question 5

Ephemeral Ports

Answer 5

49,152 through 65,535; Also known as dynamic ports; temporary ports that allow client applications to communicate with servers

Question 6

Communication Flow

Answer 6

Source IP & Port initiate communication; Data is transmitted; Port is closed when task is complete

Question 7

TCP

Answer 7

Transmission Control Protocol - Governs data exchange over the internet at the transport layer; Ensures reliable delivery of packets

Question 8

TCP - Error Checking

Answer 8

Uses sequence numbers & acknowledgement messages; Detects & retransmits lost or corrupted packets

Question 9

TCP - Flow Control

Answer 9

Prevents overwhelming the receiver; Windowing - controls amount of data sent at a time (Bigger window = More data allowed = Possibility of more errors)

Question 10

Three-Way Handshake

Answer 10

Initiated to establish a connection between 2 systems; Ensures readiness for secure data transmission
- SYN (Synchronize)
- SYN-ACK (Synchronize & Acknowledge)
- ACK (Acknowledge)

Question 11

UDP

Answer 11

User Datagram Protocol; Communication protocol used for time-sensitive transmissions; Ideal for applications prioritizing speed over error checks; Operates at the transport layer; Used in live broadcasts, online gaming, and VoIP (simple request / response communications)

Question 12

Datagrams

Answer 12

Data packets in UDP; Contains source / destination port numbers, length field, and checksum; Sent without prior setup of transmission channels (unsecure)

Question 13

ICMP

Answer 13

Internet Control Message Protocol; Operates at the Network layer; Diagnoses network communication issues; Not for data transmission; No guaranteed delivery, ordering, or error connection; Made for speed & simplicity

Question 14

Ping Utility

Answer 14

Uses ICMP to test host reachability on an IP network; Measures roundtrip time (latency) for network connection

Question 15

Messages

Answer 15

Used for indicating host or service unreachability, expired time to live, & router buffer issues

Question 16

Message Structure

Answer 16

Header –> Type of ICMP message (1 byte) –> Code; additional context about type (1 byte) –> Checksum; used for error checking the message header and data

Question 17

ICMP Security

Answer 17

Concerns: ICMP Flood Attack - overwhelm target with echo request packets, leading to DoS attack, can be amplified to DDoS; Ping of Death - older system exploit;
Network admins can block ICMP traffic, but face troubleshooting issues

Question 18

Port 80

Answer 18

HTTP (Hypertext Transfer Protocol); Application Layer; Lacks security

Question 19

Port 443

Answer 19

HTTPS (Hypertext Transfer Protocol Secure); Application Layer; Adds encryption via SSL / TLS

Question 20

Port 25

Answer 20

SMTP (Simple Mail Transfer Protocol); Application Layer; Used for SENDING emails; Unsecure

Question 21

Port 465

Answer 21

SMTPS (Simple Mail Transfer Protocol Secure); Application Layer; Used for SENDING emails; Secure with TLS Protocol

Question 22

Port 110

Answer 22

POP3 (Post Office Protocol version 3); Application Layer; Used for RECEIVING emails; Unsecure

Question 23

Port 995

Answer 23

POP3S (Post Office Protocol version 3 Secure; Application Layer; Used for RECEIVING emails; Secure over TLS/SSL

Question 24

Port 143

Answer 24

IMAP (Internet Message Access Protocol); Application Layer; Used for RECEIVING emails; Unsecure

Question 25

Port 993

Answer 25

IMAPS (Internet Message Access Protocol Secure); Application Layer; Used for RECEIVING emails; Secure over TLS/SSL

Question 26

Port 20

Answer 26

FTP (File Transfer Protocol); Data transfer

Question 27

Port 21

Answer 27

FTP (File Transfer Protocol); Control commands

Question 28

Port 22

Answer 28

SSH (Secure Shell), SFTP (Secure File Transfer Protocol); Encrypts data for file transmissions

Question 29

Port 69

Answer 29

TFTP (Trivial File Transfer Protocol); For sending files when minimal security is sufficient

Question 30

Port 445

Answer 30

SMB (Server Message Block), AD (Active Directory); Network file sharing protocol that allows applications to read & write to files & request services from the server programs

Question 31

Port 23

Answer 31

Telnet; Unencrypted text communications; replaced by SSH

Question 32

Port 3389

Answer 32

RDP (Remote Desktop Protocol); Allows remote access to a Windows system; Supports data encryption, smart card authentication, & bandwidth reduction

Question 33

Port 67

Answer 33

DHCP (Dynamic Host Configuration Protocol); UDP; Listens for client requests; Automates the assignment of IP addresses & networking parameters

Question 34

Port 68

Answer 34

DHCP (Dynamic Host Configuration Protocol); UDP; Responds to client requests; Automates the assignment of IP addresses & networking parameters

Question 35

Port 1433

Answer 35

Microsoft SQL Server

Question 36

Port 3306

Answer 36

MySQL Server

Question 37

Port 161

Answer 37

SNMP (Simple Network Management Protocol); UDP; For polling; Used for collecting information and configuration; Crucial for network diagnostics & performance monitoring

Question 38

Port 162

Answer 38

SNMP (Simple Network Management Protocol); UDP; For unsolicited trap messages; Used for collecting information and configuration; Crucial for network diagnostics & performance monitoring

Question 39

Port 514

Answer 39

SYSLOG (System Logging); UDP by default, can use TCP for reliability; Standard for message logging allowing devices to send event messages across IP networks

Question 40

Port 123

Answer 40

NTP (Network Time Protocol); UDP; Used to sync clocks of computers over a network; Vital for time-dependent processes, timestamping events, transaction logging, & security protocols

Question 41

Port 5060

Answer 41

SIP (Session Initiation Protocol); UDP / TCP (unencrypted); Initiates, maintains, & terminates real-time sessions for voice, video, & messaging

Question 42

Port 5061

Answer 42

SIP (Session Initiation Protocol); TCP w/ TLS (encrypted); Initiates, maintains, & terminates real-time sessions for voice, video, & messaging

Question 43

Port 389

Answer 43

LDAP (Lightweight Directory Access Protocol); UDP/TCP (unsecure); Protocol for accessing & maintaining directory information services over an IP network; Used to look up personal information in email programs

Question 44

Port 636

Answer 44

LDAPS (Lightweight Directory Access Protocol Secure); TCP (secure with SSL or TLS); Protocol for accessing & maintaining directory information services over an IP network; Used to look up personal information in email programs