Common Ports and the OSI Model

Question 1

Telnet

Answer 1

1. TCP/23 port
2. Login to rdevices remotely.
3. console access
4. in the clear no secure Auth

Question 2

SSH -

Answer 2

Secure Shell

1. TCp/22 port
2. Encrypted
3. Replacement for Telnet

Question 3

DNS

Answer 3

Domain Naming System

1. UDP/53
2. Resolves hostnames to IP address.

Question 4

SMTP

Answer 4

Simple Mail Transfer Protocol

1. TCP/25
2. Sends mail from one server to another.
3. Sends mail from mobile device and email clients.
4. Not used for receiving email (IMAP/POP3)

Question 5

SFTP

Answer 5

Secure File transfer Protocol

1. TCP/22
2. Uses SSH to transfer files.
3. Resuming interrupted transfers, directy listings, file removal.
4. Encrypted information.

Question 6

FTP

Answer 6

File Transfer Protocol

1. TCP/20 (active mode data)
2. TCP/21 (control)
3. Authenticates with a username and password.

Full-featured functionality (list add delete etc)

Question 7

TFTP -

Answer 7

Transfer File Protocol

1. UDP/69
2. Very simple FT app
3. No authentication.
4. Not used on production systems

Question 8

DHCP -

Answer 8

Dynamic Host Configuration Protocol

1. UDP/67 and 68.
2. Requires a DHCP server (server, appliance, integrated into a small office home office router, etc)
3. Dynamic/pooled ip address are assigned in real time from a pool.
4. Each system is given a lease and must renew at set intervals.
5. DHCP reservation (addresses are assigned by MAC address in the DHCP server)

Question 9

HTTP and HTTPS

Answer 9

Hypertext Transfer Protocol

1. TCP/80 (HTTP
2. TCP/443 (HTTPS)
3. Communication in the browser and by other apps.
4. In the clear or encrypted.
   - Supported by nearly all web servers and clients.

Question 10

SNMP -

Answer 10

Simple Network Management Protocol

1. UDP/161
   - Gathers statistics from network devices.
2. v1 - The original
   - Structured tables
   - in-the-clear
3. v2 - a good step ahead
   - Data type enhancements
   - Bulk transfers
   - Still in-the-clear
4. v3 - A secure standard
   - Message integrity
   - Authentication
   - Encryption.

Question 11

RDP -

Answer 11

Remote Desktop Protocol

1. TCP/3389
2. Share a desktop from a remote location.
3. Remote Desktop Services on many Windows versions
4. Can connect to an entire desktop or just an app.
5. Clients for Windows, MACOs, Linux, Unix, iPhone and others.

Question 12

NTP

Answer 12

Network Time Protocol

1. UDP/123
2. Switches, routers, firewalls, servers, workstations
   - Every device has it’s own clock
3. Synchronizing clocks becomes critical
   - Log files, auth information, outage details
4. Automatic updates
   - No flashing 12:00 lights
5. Very accurate
   - Accuracy better than 1ms

Question 13

SIP

Answer 13

Session Initiation Protocol

1. TCP/5061-5061
2. Setup and manage VoIP sessions
   - Call, ring, hangup
3. Extend voice comms
   - Video conferencing
   - Instant messaging
   - File transfer
   - etc

Question 14

SMB

Answer 14

Server Message Block

1. TCP/445 (NetBIOS-less)
2. Protocol used by Microsoft Windows
   - File sharing, print sharing
   - Allso called CIFS (Common Internet File System)

Question 15

POP/IMAP

Answer 15

1. Receives emails from an email server

POP3 - Post office Protocol v3

• TCP/110
• Basic mail transfer functionality

IMAP4 - Internet Message Access Protocol v4

• TCP/143
• Includes management of email inbox from multiple clients

Question 16

LDAP - Lightweight Directory Access Protocol

Answer 16

Lightweight Directory Access Protocol

• TCP/389
• Store and retrieve information in a network directory

Lightweight Directory Access Protocol Secure

• TCP/636
• Non-standard implementation of LDAP over SSL

Question 17

H.323

Answer 17

1. Voice over IP (VoIP) signlaing
   - TCP/1720
   - ITU Telecommunication H.32x protocol series
2. Setup and manage VoIP sessions
   - Call, ring, hangup
3. One of the earliest VoIP standards
   - Still in use today

Question 18

OSI Model

Answer 18

Open Systems Interconnection Reference Model

• It’s a guide
• Don’t get wrapped up in the details
• All People Seem To Need Data Processing

Question 19

Layer 1

Answer 19

Physical Layer

• Signaling, cabling, connectors
• This layer isn’t about protocols

You have a physical layer problem

• Fix your calbing, punch-downs, etc
• Run loopback tests, test/replace cables, swap adapter cards

Question 20

Layer 2

Answer 20

Data Link Layer

The basic network language
- Foundation of communication at the data link layer

Data Link Control (DLC) protocols
-MAC (Media Access Control) address on ethernet

The Switching layer

Question 21

Layer 3

Answer 21

Network or routing layer

Internet Protocol (IP)

Fragments frames to traverse different networks

Question 22

Layer 4

Answer 22

Transport Layer

Post office layer
- Parcels and letters

TCP (Transmission Control Protocol) and UDP (User Datagram Protocol)

When you hear layer 4 or layer 4 protocol almost always refers to TCP or UDP.

Question 23

Layer 5

Answer 23

Session Layer

Communication management between devices
- Start, stop, restart

Control protocols, tunneling protocols
- “Can we talk” “yes we can”

Question 24

Layer 6

Answer 24

Presentation Layer

Character encoding
-Application encryption (SSL/TLS)

Often combined with application layer

Question 25

Layer 7

Answer 25

Application Layer

Responsible for what we see