IP addresses may uniquely identify each system on a network, but those systems may be responsible for running many different services. That’s where network ports come into play. Network ports are particular locations on a system associated with a specific application. In this video, you will learn how network ports function and the common network ports included on the exam.
- [Narrator] IP addresses may uniquely identify each system on a network, but those systems may be responsible for running many different services. That's where network ports come into play. Network ports are particular locations on a system associated with a specific application. Imagine that each computer on the network is an apartment building and each application is an individual apartment. The IP address on the computer is like the street address on the apartment building, but once you arrive at the building, you need specific instructions to get to the right apartment.
The network port is like the apartment number, guiding traffic to the correct application. Network ports are represented using a 16-bit binary number. When we write that out in decimal form, we have two to the 16th power or 65,536 possible values. Just as with IP addresses, we start counting at zero, so port numbers may range from zero to 65,535. Different ranges of ports are used in different ways.
Ports between zero and 1,023 are known as the well-known ports. These are reserved for common applications and are assigned by internet authorities. Using well-known ports ensures that everyone on the internet will know how to find common services on a system such as web servers, email servers, and other commonly used applications. For example, web servers use the well-known Port 80 while secure web servers use Port 443. Ports between 1,024 and 49,151 are known as registered ports.
Application vendors may register their applications to use these ports. For example, Microsoft reserved Port 1433 for SQL Server database connections while Oracle registered Port 1521 for its own database's use. Ports above 49,151 are set aside as dynamic ports that applications may use on a temporary basis. One of the burdensome tasks on the Security+ exam is that you must memorize some important facts.
Common port numbers are one of those memorization tasks. Here are the important port numbers that you need to know. The File Transfer Protocol, FTP, uses Port 21 to transfer data between systems. The Secure Shell protocol, SSH, uses Port 22 for encrypted administrative connections to servers while the Remote Desktop Protocol, RDP, uses Port 3389 for a similar purpose. Windows systems use Ports 137, 138, and 139 for network communications using the NetBIOS protocol.
And all systems use Port 53 for DNS lookups. The Simple Mail Transfer Protocol, SMTP, uses Port 25 to exchange email between servers while the Post Office Protocol, POP, allows clients to retrieve mail on Port 110. And the Internet Message Access Protocol, IMAP, uses Port 143 for a similar purpose. The Hypertext Transfer Protocol, HTTP, uses Port 80 for unencrypted web communications while the secure version of HTTP, HTTPS, uses Port 443 for encrypted communications.
There are many more ports in use on modern networks, but those are the ones that you'll need to know for the CISSP exam.
Learn about communication and networking best practices, including TCP/IP networking, network security devices, and secure network design and management. Instructor and cybersecurity expert Mike Chapple also includes coverage of converged protocols, network encryption, and wireless networking. You can find Mike's companion study books for this series at the Sybex test prep site and review the complete CISSP Body of Knowledge at https://www.isc2.org/cissp-domains/default.aspx.
- IP addressing
- Switches and routers
- Content distribution networks
- Designing secure networks
- Specialized networking
- Managing secure networks
- Working with virtualized networks like SDNs
- Detecting and preventing network attaches
- Transport encryption
- Wireless networking
- Host security