TCP/IP Applications Flashcards
What is a single unit of information transmitted and used by the different protocols provided in frame segments.
Protocol Data Units ( PDU’s )
When talking about the TCP part of the Frame or PDU we are talking about:
TCP Segment
When talking about the UDP part of the Frame or PDU we are talking about:
UDP Segment
What’s it called when a computer using TCP wants to get out to the internet, the client machine:
1st sends a Syn packed to the server
2nd the server sends back a SynAck back to the Client
3rd the client sends back to the Server an ACK
TCP 3-Way handshake
Ethernet Frames are used by :
Switches and routers
When a computer is using UDP, its communication is:
one way
this Protocol sends one little message over the internet like ARP or PIng are examples of :
Internet Control Message Protocol ( ICMP )
This protocol supports multicasting:
Internet Group Management Protocol ( IGMP )
Whenever you see an address starting with 224.0.0.0 it is called:
Multicast address
Both the ICMP and IGMP work at the:
Internet Layer 2 in the TCP/IP model and the network layer 3 of the OSI model.
these tools check and count all the router Hops
Tracert for Windows / Traceroute for Linux
When routers don’t respond well to Tracert use this instead :
pathping
this tool is a Protocol Analyzer , it strips the frames apart , segments and organize all the data with info for troubleshooting, is a Capture tool that grabs the packets, and displays the traffic flow of ethernet frames
Wireshark
A text based command that lists all the open ports and connections on your computer at any given moment.
netstat
This is a data-network packet analyzer program that is similar to Wireshark and runs under a CLI like Linux.
tcpdump
Port 443 is actually a:
HTTPS website
this command presents the results numerically in netstat:
netstat -n
this command presents or shows the executable for every connection under the netstat command:
netstat -b
this netstat command shows the executable and process id for every computer connected to your machine. Also, using the PID you find, look in the Task manager to see what is actually running:
netstat -o
you can actually run all the netstat commands together:
netstat -bno
this netstat command shows all active ports:
netstat -a
This port is also referred to as SMB 445
Port 445
This netstat flag or command shows the local routing table:
netstat -r
These are 2 web server programs / software
Microsoft IIs and Apache
Simple way to see if a web server is running on a computer is?
run the command: netstat -a
On a Windows based OS, to see most items on a Web Server use or go to:
Tools then Internet options
HTTP uses what port number?
80
these type of accounts allow public access to FTP servers:
Anonymous accounts
FTP clients send out communications on which port?
port 21
FTP servers respond to clients on which port?
port 20
Web browsers make good FTP clients
ftp://ftp.microsoft.com
Another way to connect to a FTP server besides in Windows is using a:
command prompt which is basically an FTP client / type ftp enter
What FTP command downloads files:
GET
What FTP command uploads files?
PUT
FTP is not an encrypted protocol
can see most basic files
SFTP or secure FTP uses _____ and _____ to encrypt the files stream:
SSL and TLS
A similar but not as robust protocol to FTP is called:
TFTP or trivial FTP uses UDP Port 69
FTP is not ________ so all passwords and data are sent in the clear.
encrypted ( but SFTP is )
Sending email uses what non-secured protocol
SMTP (simple mail Transfer Protocol) - port 25
Receiving email can use either of these 2 non-secured protocols which are:
POP3 (Post Office Protocol v3) - port 110
IMAP (Internet Message Access Protocol v4) - port 143
example of email server software is:
hMailServer
Implementing TLS for securing email uses what port numbers:
IMAP - 993
POP - 995
SMTP - 465
This secured protocol encompasses all 3 email protocols:
STARTTLS - Port 465 (1st one used) caused conflicts with non-secured SMTP so it started using 587
this is an unsecured remote command prompt to a remote computer and is considered the oldest application on the Internet:
telnet runs on Port 23
A poplular Telnet server is called:
freeSSHd
A secured encrypted version of Telnet or terminal emulator:
SSH ( Secure Shell ) runs on TCP port 22
What does SSH use to to encrypt traffic:
authentication key
Another similar protocol to Telnet but was replaced with SSH that didn’t even use a login or password like Telnet is called:
Rlogin and uses Port 513
These protocols use UDP to synchronize devices on a network and use port 123
Network Time Protocol ( NTP )
Simple Network Time Protocol ( SNTP )
NTP operates in a hierarchical fashion or:
Clock Strata
To reserve a certain number of IP’s so the DHCP server doesn’t give them out to any computer on the network like for the gateway or email server is called:
IP reservation
If you have a computer that it’s not critical if it has an IP but you know it should have priority, (aka a security camera), you can use:
MAC reservation
If you have issues with your network running out of IP’s, maybe reduce the _____________ for the IP’s on the DHCP server.
lease times
This tool is used to manage or keep track of all of your IP addresses especially for servers and VM farms is called:
IP Address Management or ( IPAM )
