Protocols & Ports (Memorize) Flashcards
FTP
FTP
- Active mode: TCP port 21 for control, TCP port 20 for data
- Passive mode: TCP port 21 for control, random TCP port for data
- Best to disable passive mode - random port blocked by fwall
TFTP
Trivial FTP
- UDP port 69
- Commonly disabled
SSH
SSH
TCP port 22
IPSec
IPSec
Encrypts IP traffic - tunnel mode to protect VPN
-Authentication Header (AH) - protocol ID 51
-Encapsulating Security Payload (ESP) - protocol ID 50
-Internet Key Exchange (IKE) - UDP port 500
SFTP
SFTP
Secure FTP
-TCP port 22
-Extension of SSH
FTPS
FTPS
FTP Secure
-TCP port 989 and 990 or TCP port 20 & 21
-TLS to encrypt FTP
SMTP
Simple Mail Transfer Protocol
- TCP port 25
- Use STARTTLS on same port
POP3
POP3
TCP port 110
Secure POP3
Secure POP3
- port 110 (use STARTTLS)
- Encrypts with SSL or TLS
IMAP4
IMAP4
Internet Message Access Protocol
-Store mail on server with folders
-TCP port 143
Secure IMAP
-What does it encrypt?
Secure IMAP Secure Internet Message Access Protocol -SSL or TLS -TCP port 143 (use STARTTLS) -Encrypts communication downloaded from email server -No security for outgoing email messages
HTTPS
HTTPS
SSL or TLS
-TCP port 443
Kerberos
Kerberos
- Authentication protocol in Windows, some Unix
- UDP port 88
- Key Distribution Center (KDC) to issue timestamped tickets
LDAP
LDAP
Lightweight Directory Access Protocol
-TCP port 389
-Syntax for object identification and management
-Query X.500 directory (attribute=value)
-Microsoft Active Directory can support LDAP authentication
LDAPS
LDAPS
Lightweight Directory Access Protocol Secure
-TCP port 636
-encrypts with TLS
-Syntax for object identification and management