Protocols and Ports Flashcards
22
SSH
SSH
Secure Shell is a cryptographic protocol that is used to remotely administer Linux server and network equipment through a text console.
The SSH Protocol listens for incoming requests on TCP port 22
53
DNS
DNS
Domain Name Services is a distributed directory of domain resource records.
DNS resolvers operate on UDP port 53 for simple lookups and TCP port 53 for data replication
25
SMTP
SMTP
Simple Mail Transport Protocol is used by mail transfer agents (MTAs) to deliver emails to destination email servers.
Operates on TCP port 25
22
SFTP
SFTP
Secure File Transfer Protocol is a file transfer protocol that uses the SSH inner workings. When SSH is installed on a system such as Linux, SFTP is automatically enabled to transfer files. The command used is often scp, which stands for Secure Copy Protocol.
TCP port 22
20, 21
FTP
FTP
File Transfer Protocol is a legacy file-sharing protocol still that is still commonly used on the internet.
69
TFTP
TFTP
Trivial File Transfer Protocol provides no security and is simplistic in its operation. It is used to boot computers over the network with the Preboot Execution Environment. It is also used to transfer software images from network devices such as routers and switches during software upgrades.
UDP port 69
23
Telnet
Telnet protocol allows remote administration of network devices through a text-based console. It is being replaced by SSH
TCP port 23
67, 68
DHCP
DHCP
Dynamic Host Congiguration Protocol provides automatic configuration of IP addresses, subnet masks, and options shuch as Domain Name Server servers and the remote gateway to network devices. It operates in a connectionless state, because the client will not yet have an established IP address. The DHCP server used UDP port 67 and the client used 68.
80
HTTP
HTTP
Hypertext Transfer Protocol is an application protocol for web data communications. When a web page is requested from a web server, an HTTP request is made for the HTML page. When the page is returned to the web bowser, subsequent requests are made for the elements in the HTML page, such as images and JavaScript; all done via the HTTP protocol. Web crawlers and mobile apps alos request objects via HTTP.
The server listens for requests on TCP port 80
443
HTTPS
HTTPS
Hypertext Transfer Protocol over SSL. Same as HTTP but it allows for the encryption of the transfers via a Secure Socket Layer. SSL is a cryptographic protocol that uses Public Key Infrastructure (PKI). A private key must be imported into the web server from a mutually trusted source.
TCP port 443
161
SNMP
SNMP
Simple Network Management Protocol used for the management of servers and network devices. It can be used to collect data from servers and network devices such as memory available, CPU usage, and bandwidth. The data is arranged in a Network Management Station (NMS) by the administrator.
UDP
3389
RDP
RDP
Remote Desktop Protocol a Microsoft protocol used for connecting to another Microsoft computer or server for remote administration. The RDP client built into the Microsoft operating system is mstsc.exe.
TCP
123
NTP
NTP
Network Time Protocol is optimized for synchronizing clocks between computers over the Internet.
Both requests and replies go through UDP port 123
5060, 5061
SIP
SIP
Session Initiation Protocol is a communication protocol for the setup and signaling of Voice over IP calls. SIP does not transport the media stream, it only assists in setting up the media stream for the communication session. Many VoIP private branch exchange (PBX) manufactures add functionality to SIP.
the protocol functions on UDP port 5060, although TCP can be used. SIP can also use encryption via Transport Layer Security (TLSO on UDP port 5061 and can be changed to TCP if needed.
445
SMB
SMB
Server Message Block is common network files and printer sharing protocol that is used with Microsoft products. AKA the Common Internet File System (CIFS). However this implies SMB 1.x. Linux has a SMB filler called Samba.
SMB 3.1.1 is used for database and virtual machine storage over the network. It supports many features of block-level storage protocols, such as remote direct memory access (RDMA), failover, and Advanced Encryption Standard (AES) encryption.
TCP