The Ports and Protocols You Need to Know for the SY0-701 Security+ Exam

The Ports and Protocols You Need to Know for the SY0-701 Security+ Exam

Studying for the CompTIA Security+ certification is challenging and time consuming. There are so many ports and protocols to memorize for the Security+ exam. There are thousands of protocols in use today, so how are you supposed to know which ones are needed for the Security+ exam?

In previous versions of the test, like the SY0-601 and SY0-501, students were required to memorize long lists of protocols. Some of the questions on these exams were as simple as “which protocol is used on port X”. The SY0-701 exam requires students to not just memorize port numbers, but to also differentiate it’s use. (If you’re looking for ports and protocols for SY0-601, check out our 601 reference sheet.)

Cyberkraft has created this ports and protocols reference guide to help you memorize the correct ports and protocols that you’ll encounter on the CompTIA Security+ exam. Cyberkraft is a CompTIA Authorize Partner and trains thousands of students to pass their Security+ exam every year. This guide is customized for the SY0-701 exam so you won’t have to waste your time researching port numbers on your own.

We’ve included a description of each protocol to help you learn about it’s use. We also included where each protocol operates on the Open Systems Interconnection (OSI) model and whether the protocol uses TCP or UDP connections. You may encounter questions on the SY0-701 exam that ask you about the OSI model and connection type associated with protocol.

SY0-701 Security+ Ports and Protocols Reference Sheet

Layer 7 Application Port TCP/ UDP Use
File Transfer Protocol (FTP) 20/21 TCP Port 21 is the control port while port 20 is used to transfer files.
Secure Shell (SSH) 22 TCP Designed to transmit data through a remote connection.
SSH File Transfer Protocol 22 TCP A completely separate protocol from FTP (it is not compliant with FTP servers) that uses SSH to encrypt file transfers.
Simple Mail Transfer Protocol (SMTP) 25 TCP Internet mail protocol used to send outgoing mail from email clients to mail servers. 
TACACS+ 49 TCP Cisco proprietary protocol used for authentication, authorization, and accounting (AAA) services
Domain Name System (DNS) 53 UDP Used to associate IP addresses with domain names
Dynamic Host Configuration Protocol (DHCP) 67/68 UDP This network management protocol is used to assign multiple local private IP addresses from one public IPv4 address.
Hypertext Transfer Protocol (HTTP) 80 TCP Protocol used for websites and most internet traffic.
Kerberos 88 TCP/ UDP Network authentication protocol that allows for communication over a non-secure network.  Primarily uses UDP but can use TCP.
Post Office Protocol (POP) 110 TCP E-mail protocol that allows e-mail clients to communicate with e-mail servers.  POP provides only one-way communication.
Network Time Protocol 123 UDP Low latency protocol used to synchronize timekeeping across a network.
Server Message Block (SMB) 139 UDP Windows proprietary protocol built on NetBIOS.  Allows users to remotely access servers.  Originally used port 139 over UDP.
Internet Message Access Protocol (IMAP)   143, 993 TCP E-mail protocol used by e-mail clients to communicate with e-mail servers. Provides two way communication unlike POP.
Simple Network Management Protocol (SNMP) 161/ 162 UDP Protocol used to monitor and manage network devices on IP networks.
Lightweight Directory Access Protocol (LDAP) 389 UDP Used to manage and communicate with directories.
Hypertext Transfer Protocol Secure (HTTPS) 443 TCP Secure version of HTTP that used TLS for encryption.  Most websites use HTTPS instead of HTTP.
Secure Socket Tunneling Protocol (SSTP) 443 TCP Microsoft developed SSTP technology to replace the more insecure PPTP or L2TP/IPSec options available in Windows.  SSTP uses TLS
Server Message Block (SMB) 445 TCP Windows proprietary protocol built on NetBIOS.  Allows users to remotely access servers.  Modern versions use port 445 and TCP.
Internet Protocol Security (IPSec) using ISAKMP 500 UDP Internet Protocol security achieved through the use of ISAKMP – Internet Security Association and Key Management Protocol
Simple Mail Transfer Protocol Secure (SMTPS) 587 TCP The secure version of SMTP.  Uses TLS for encryption.
Lightweight Directory Access Protocol Secure (LDAPS) 636 TCP Secure version of LDAP that uses TLS for encryption.
File Transfer Protocol Secure (FTPS) 989/ 990 TCP FTPS uses TLS for encryption.  It can run on ports 20/21 but is sometimes allocated to ports 989/990.
Internet Message Access Protocol Secure (IMAPS) 993 TCP Secure version of IMAP that uses TLS for encryption.
Post Office Protocol 3 Secure (POP3S) 995 TCP Secure version of POP that uses TLS for encryption
Remote Authentication Dial-In User Service (RADIUS) 1812, 1813 UDP Used to provide AAA for network services
Remote Desktop Protocol (RDP) 3389 TCP This Windows proprietary protocol that enables remote connections to other computers
Diameter 3868 TCP Developed as an upgrade to Radius
Secure Real Time Protocol (SRTP) 5004 UDP SRTP replaced RTP and is a protocol used to stream audio and video communication using UDP. 
Layer 4 Transport Port TCP/ UDP Use
Transmission Control Protocol (TCP) N/A TCP One of two main protocols of the Internet Protocol (IP) suite used to transmit data over an IP network.  TCP provides error checking to ensure packets are not lost in transit.
User Datagram Protocol (UDP) N/A UDP The second main protocol in the IP suite that transmits datagrams in a best effort method.  UDP does not include error checking.
Point to Point Tunneling Protocol (PPTP) 1723 TCP Based on PPP. Deprecated protocol for VPNs.
Layer 2 Data Link Port TCP/ UDP Use
Layer 2 Tunneling Protocol (L2TP) 1701 UDP Used to create point to point connections, like VPNs over a UDP connection. Needs IPSec for encryption. Designed as an extension to PPTP.  Operates at the data link layer but encapsulates packets at the session layer.

Point to Point Tunneling Protocol (PPTP)
1723 UDP Based on PPP. Deprecated protocol for VPNs.

The ports and protocols are just one of the topics you’ll need to learn to ace your Security+ exam. As a CompTIA Authorized Partner, Cyberkraft offers both self-paced and instructor-led classes for Security+. We have a 94% pass rate with our courses and we offer a first time pass guarantee with our live class.

If you’re ready to earn your Security+ certification with award winning training programs, enroll in our Security+ course today!

Of course, the ports and protocols are only one of the many topics you’ll need to know to ace your Security+ exam.  With our self-paced and instructor-led training, you’ll gain hands on experience with the networking and security tools tested on the exam!

Are you ready to become the expert, pass your Security+ certification, and earn an average yearly Salary of $85,000?  Click here to check out our SY0-701 Security+ training bootcamp.

 

Sign up for more information below or schedule a demo with our Head Instructor and receive a 10% discount off Cyberkraft’s Security+ training courses.

Related Articles

Responses