2.1 Compare and contrast TCP and UDP ports, protocols, and their purposes

TCP & UDP Ports

-can be any number between 0-65,535 -most servers use non-ephemeral port numbers (isn't always the case) -port numbers are for communication, not security -service port numbers need to be well known

Telnet

A network protocol used to virtually access a computer and to provide a two-way, collaborative and text-based communication channel between two machines

TCP (Transmission Control Protocol)

A protocol that has a formal process when you start the communication and a formal process when you end the communication. Guaranteed delivery of each packet

SLP (Service Location Protocol)

A protocol used by Apple Filing Protocol (AFP) to view the list of available devices.

Ethernet Frame

A term referring to an Ethernet data link header and trailer, plus the data encapsulated between the header and trailer.

HTTPS (Hypertext Transfer Protocol Secure)

An encrypted version of HTTP.

FTPS (File Transfer Protocol Secure)

An extension of FTP that uses SSL or TLS encrypt FTP traffic.

AFP (Apple Filing Protocol)

Apple's version of Window's SMB.

DHCP (Dynamic Host Configuration Protocol)

Automated configuration of IP Address, subnet mask, and other options.

SMB Also Known As

CIFS (Common Internet File System)

DNS (Domain Name System)

Convert name in browsers into something for the network such as an IP address.

SSH (Secure Shell)

Cryptographic network protocol for operating network services securely over an unsecured network.

DHCP process (DORA)

Discover, Offer, Request, Acknowledge

SNMP (Simple Network Management Protocol)

Gathers statistics from network devices. - v1 uses structured tables in non-encrypted form. - v2 allowed for bulk transfer of data and also in clear text. - v3 provides message authentication, integrity and encryption

NetBIOS (Network Basic Input/Output System)

Older version of windows that use this inside of a UDP or TCP packet to transfer files or share printers between windows

Non-ephemeral ports

Permanent ports / well known. Usually on a server or service. 0 - 1023

HTTP (Hypertext Transfer Protocol)

Protocol for how computers and servers communicate; Used to display webpages

SMB (Server Message Block)

Protocol used by Microsoft windows. Used to transfer files or share printers between windows systems.Allows for direct SMB communication over IP protocol

TCP Flow Control

Receiver controls sender, so sender won't overflow receiver's buffer by transmitting too much, too fast

TCP Handshakes

SYN, SYN/ACK, ACK

RDP (Remote Desktop Protocol)

Share a desktop screen from a remote location. On many Windows versions. Can connect to an entire desktop or just an application.

LDAP (Lightweight Directory Access Protocol)

Store and retrieve info in a network directory.

SLP (Service Location Protocol) Port

TCP & UDP 427 (list of available devices)

FTP Port Number

TCP 20, 21

SSH Port Number

TCP 22

Telnet port

TCP 23

RDP port number

TCP 3389

LDAP Port Number

TCP 389

HTTPS port number

TCP 443

SMB Port Number

TCP 445

AFP Port Number

TCP 548 (used for file services)

HTTP Port Number

TCP 80

FTPS Ports

TCP 989 & 990

Ephemeral ports

Temporary ports used in real time by clients. 1024-65,535.

OSI Layer 4

The Transport layer breaks data down into manageable chunks. TCP & UDP operate at the Transport layer.

True or False: Telnet is not encrypted.

True

NetBIOS Port Number

UDP 137, 138 TCP 139

SNMP Port Number

UDP 161, 162

DHCP Port Number

UDP 67, 68

DNS port number

UDP/TCP 53

UDP (User Datagram Protocol)

Used instead of TCP when guaranteed delivery of each packet is not necessary. UDP uses a best-effort delivery mechanism.

DHCP Also Known As

bootp, or Bootstrap Protocol