PORTS TO MEMORIZE
RPC remote procedure call port 135
FTP data port (active mode) TCP 20
FTP control port TCP 21
SSH TCP 22
SCP (uses SSH) TCP 22
SFTP (uses SSH) TCP 22
Telnet TCP 23
SMTP TCP 25
TACACS+ TCP 49
DNS name queries UDP 53
DNS Zone Transfers TCP 53
TFTP UDP 69
HTTP TCP 80
Kerberos UDP 88
POP3 TCP 110
SNMP UDP 161
SNMP trap UDP 162
NetBIOS (TCP ralely used) TCP/UDP 137
NetBIOS UDP 138
NetBIOS TCP 139
IMAP4 TCP 143
LDAP TCP 389
HTTPS TCP 443
SMTP SSL/TLS TCP 465
IPsec (for VPN with IKE) UDP 500
LDAP/SSL TCP 636
LDAP/TLS TCP 636
POP SSL/TLS TCP 993
L2TP UDP 1701
PPTP TCP 1723
Remote desktop Protocol (RDP) TCP/UDP 3389
Microsoft SQL Server TCP 1433
DNS Domain Name System TCP,53 port used DNS zone transfers
HTTPS TCP 443 Port used for secure web traffic.
HTTP TCP 80 Internet protocol for delivering web pages to the browser.
FTP data TCP 20 - Port used by FTP to send data to a client.
FTP control TCP 21 - Port used by FTP commands sent to the server.
SSH 22 Port used to encrypt remote access communication. It typically is used as a secure replacement to Telnet.
SFTP TCP 115 Simple File Transfer Protocol.
POP3 TCP 110 Port used by the Internet protocol to read e-mail.
SMTP TCP 25 Port used to send Internet email.
NetBIOS TCP 139 Port used to establish connection between two systems.
Telnet 23 port used to remotely connect to a system such as a server or router.
RDP 3389 port used for remote administration of a Windows system.
IMAP 143 Newer Internet Protocol port used to read email.
DNS UDP port 53 is used for DNS queries
DHCP UDP port 67 is used by DHCP service
DHCP UDP port 68 is used by client requests
TFTP UDP port 69 is used to download files without requiring authentication
NetBIOS UDP port 137 & 138 used by the NetBIOS name service and datagram service
SNMP UDP port 161 is used by the Simple Network Management Protocol
TCP Three-Way Handshake/FLAGS
SYN the SYNchronize flag is assigned to any packets that are part of the SYN phases of the Tree-way handshake
ACK the ACKnowledgement flag acknowledges that a previous packet has been received.
PSH the PuSH flag is designed to force data on an application
URG the URGent flag specifies that a packet is an urgent packet.
FIN the FINish flag specifies that you would like to finalize, or end, the connection like saying goodbye (polite way)
RST the ReSeT flag is used to end a TCP connection without saying goodbye (impolitely)
TCP Transmission Control Protocol
ACK/SYN Acknowledgement Synchronize
UDP User Datagram Protocol
IP Internet Protocol
ICMP Internet Control Message Protocol - responsible for error and status two programs that use ICMP are PING and TRACERT
ARP Address Resolution Protocol - responsible for converting an IP address (layered-3 address) to the physical MAC address (layer-2 address)
Something you know a password or PIN
Something you have a smart card or USB token
Something you are a fingerprint or other biometric identification
Somewhere you are your location using geolocation technologies
Something you do gestures on a touch screen
APPLICATION LAYER PROTOCOLS / ABBREVATION
HTTP Hypertext Transfer Protocol - used on the internet to allow clients to request web pages from web servers and to allow client interaction with those web servers
HTTPS Hypertext Transfer Protocol Secure - used to connect to a web site and to receive and send content in a n encrypted format using SSL.
SSL Secure Sockets Layer
DNS Domain Name System - service used to convert fully qualified domain names Example: (www.CNN.com) to IP address (20.10.05.10)
SMTP Simple Mail Transfer Protocol - used to send or route mail over a TCP/IP network such as the internet. Protocol for sending email
POP3 Post Office Protocol version 3 - used to retrieve e-mail from mail server down. protocol for reading email
IMAP4 Internet Message Access Protocol version 4 - similar to POP3 protocol for reading email
SNMP Simple Network Management Protocol - an standard that provides a simple method for remotely managing virtually any network device that support SNMP over UDP
FTP File Transfer Protocol - protocol that exists to upload and download file between FTP servers and clients.
TFTP Trivial File Transfer Protocol - simple protocol compared with FTP and supports only reading and writing to files.
SFTP Secure File Transfer Protocol - an interactive file transfer protocol similar to FTP.
TELNET Terminal Emulation Protocol _ allows a client to run or emulate the program running on the server.
SSH Secure Shell - program used to created a shell, or session, with a remote system using a secure connection
SCP Secure Copy Protocol - responsible for copying files from a remote server to the local system over a secure connection, ensuring data transmit is kept confidential.
NTP Network Time Protocol - used to synchronize the clocks of PC's on the network or the Internet.
LDAP Lightweight Directory Access Protocol - is the TCP/IP protocol for directory service access that is supported by all the principal directory services.
NetBIOS Network Basic Input/Output System - an application programming interface that is used to make network calls to remote systems and session management functionality
THINGS TO KNOW FOR THE TEST
VLANS are a way to create communication boundaries on the network BY DEFAULT one VLAN cannot communicate with systems in another VLAN.
PROXY SERVER makes the request for the internet resource on behalf of the user and commonly the company will filter and log what web sites users have visited
FIBER OPTIC is more secure cable type because it does not carry and electrical signal, but instead carries data as pulses of light.
TCP and UDP are considered layer-4 (transport) protocols.
ICMP protocol in the TCP/IP protocol suite that is responsible for error and status reporting (PING and Tracert use ICMP), ICMP type 8 is used by the echo request message, and ICMP type 0 is used by echo reply.
IP is a layer 3 protocol of the OSI model responsible for logical addressing and routing.
HTTP uses TCP port 80
HTTPS uses TCP port 443
POP3 & IMAP4 are the internet protocols for reading email
SMTP is the Internet protocol for sending email.
FTP used two ports 20 and 21 (20) is responsible for transferring the data between two host in a FTP session. (21) carries the FTP commands from one system to another.
IPv4 uses a 32 bit addressing scheme
IPv6 is a 128 bit address scheme that uses a hexadecimal address format.
Pages linking here
(main versions and versions by same user)