The Ports and Protocols You Need to Know for the SY0-701 Security+ Exam

The Ports and Protocols You Need to Know for the SY0-701 Security+ Exam

Studying for the CompTIA Security+ certification is challenging and time consuming. There are so many ports and protocols to memorize for the Security+ exam. There are thousands of protocols in use today, so how are you supposed to know which ones are needed for the Security+ exam?

In previous versions of the test, like the SY0-601 and SY0-501, students were required to memorize long lists of protocols. Some of the questions on these exams were as simple as “which protocol is used on port X”. The SY0-701 exam requires students to not just memorize port numbers, but to also differentiate it’s use. (If you’re looking for ports and protocols for SY0-601, check out our 601 reference sheet.)

Cyberkraft has created this ports and protocols reference guide to help you memorize the correct ports and protocols that you’ll encounter on the CompTIA Security+ exam. Cyberkraft is a CompTIA Authorize Partner and trains thousands of students to pass their Security+ exam every year. This guide is customized for the SY0-701 exam so you won’t have to waste your time researching port numbers on your own.

We’ve included a description of each protocol to help you learn about it’s use. We also included where each protocol operates on the Open Systems Interconnection (OSI) model and whether the protocol uses TCP or UDP connections. You may encounter questions on the SY0-701 exam that ask you about the OSI model and connection type associated with protocol.

SY0-701 Security+ Ports and Protocols Reference Sheet

Layer 7 ApplicationPortTCP/ UDPUse
File Transfer Protocol (FTP)20/21TCPPort 21 is the control port while port 20 is used to transfer files.
Secure Shell (SSH)22TCPDesigned to transmit data through a remote connection.
SSH File Transfer Protocol22TCPA completely separate protocol from FTP (it is not compliant with FTP servers) that uses SSH to encrypt file transfers.
Simple Mail Transfer Protocol (SMTP)25TCPInternet mail protocol used to send outgoing mail from email clients to mail servers. 
TACACS+49TCPCisco proprietary protocol used for authentication, authorization, and accounting (AAA) services
Domain Name System (DNS)53UDPUsed to associate IP addresses with domain names
Dynamic Host Configuration Protocol (DHCP)67/68UDPThis network management protocol is used to assign multiple local private IP addresses from one public IPv4 address.
Hypertext Transfer Protocol (HTTP)80TCPProtocol used for websites and most internet traffic.
Kerberos88TCP/ UDPNetwork authentication protocol that allows for communication over a non-secure network.  Primarily uses UDP but can use TCP.
Post Office Protocol (POP)110TCPE-mail protocol that allows e-mail clients to communicate with e-mail servers.  POP provides only one-way communication.
Network Time Protocol123UDPLow latency protocol used to synchronize timekeeping across a network.
Server Message Block (SMB)139UDPWindows proprietary protocol built on NetBIOS.  Allows users to remotely access servers.  Originally used port 139 over UDP.
Internet Message Access Protocol (IMAP)  143, 993TCPE-mail protocol used by e-mail clients to communicate with e-mail servers. Provides two way communication unlike POP.
Simple Network Management Protocol (SNMP)161/ 162UDPProtocol used to monitor and manage network devices on IP networks.
Lightweight Directory Access Protocol (LDAP)389UDPUsed to manage and communicate with directories.
Hypertext Transfer Protocol Secure (HTTPS)443TCPSecure version of HTTP that used TLS for encryption.  Most websites use HTTPS instead of HTTP.
Secure Socket Tunneling Protocol (SSTP)443TCPMicrosoft developed SSTP technology to replace the more insecure PPTP or L2TP/IPSec options available in Windows.  SSTP uses TLS
Server Message Block (SMB)445TCPWindows proprietary protocol built on NetBIOS.  Allows users to remotely access servers.  Modern versions use port 445 and TCP.
Internet Protocol Security (IPSec) using ISAKMP500UDPInternet Protocol security achieved through the use of ISAKMP – Internet Security Association and Key Management Protocol
Simple Mail Transfer Protocol Secure (SMTPS)587TCPThe secure version of SMTP.  Uses TLS for encryption.
Lightweight Directory Access Protocol Secure (LDAPS)636TCPSecure version of LDAP that uses TLS for encryption.
File Transfer Protocol Secure (FTPS)989/ 990TCPFTPS uses TLS for encryption.  It can run on ports 20/21 but is sometimes allocated to ports 989/990.
Internet Message Access Protocol Secure (IMAPS)993TCPSecure version of IMAP that uses TLS for encryption.
Post Office Protocol 3 Secure (POP3S)995TCPSecure version of POP that uses TLS for encryption
Remote Authentication Dial-In User Service (RADIUS)1812, 1813UDPUsed to provide AAA for network services
Remote Desktop Protocol (RDP)3389TCPThis Windows proprietary protocol that enables remote connections to other computers
Diameter3868TCPDeveloped as an upgrade to Radius
Secure Real Time Protocol (SRTP)5004UDPSRTP replaced RTP and is a protocol used to stream audio and video communication using UDP. 
Layer 4 TransportPortTCP/ UDPUse
Transmission Control Protocol (TCP)N/ATCPOne of two main protocols of the Internet Protocol (IP) suite used to transmit data over an IP network.  TCP provides error checking to ensure packets are not lost in transit.
User Datagram Protocol (UDP)N/AUDPThe second main protocol in the IP suite that transmits datagrams in a best effort method.  UDP does not include error checking.
Point to Point Tunneling Protocol (PPTP)1723TCPBased on PPP. Deprecated protocol for VPNs.
Layer 2 Data LinkPortTCP/ UDPUse
Layer 2 Tunneling Protocol (L2TP)1701UDPUsed to create point to point connections, like VPNs over a UDP connection. Needs IPSec for encryption. Designed as an extension to PPTP.  Operates at the data link layer but encapsulates packets at the session layer.

Point to Point Tunneling Protocol (PPTP)
1723UDPBased on PPP. Deprecated protocol for VPNs.

The ports and protocols are just one of the topics you’ll need to learn to ace your Security+ exam. As a CompTIA Authorized Partner, Cyberkraft offers both self-paced and instructor-led classes for Security+. We have a 94% pass rate with our courses and we offer a first time pass guarantee with our live class.

If you’re ready to earn your Security+ certification with award winning training programs, enroll in our Security+ course today!

Of course, the ports and protocols are only one of the many topics you’ll need to know to ace your Security+ exam.  With our self-paced and instructor-led training, you’ll gain hands on experience with the networking and security tools tested on the exam!

Are you ready to become the expert, pass your Security+ certification, and earn an average yearly Salary of $85,000?  Click here to check out our SY0-601 Security+ training bootcamp.

Sign up for more information below or schedule a demo with our Head Instructor and receive a 10% discount off Cyberkraft’s Security+ training courses.

Related Articles