1
00:00:00,000 --> 00:00:00,960
In this lesson,

2
00:00:00,960 --> 00:00:04,019
we're going to cover network service ports and protocols.

3
00:00:04,019 --> 00:00:05,700
Now, network service ports and protocols

4
00:00:05,700 --> 00:00:07,830
are fundamental to the operation and management

5
00:00:07,830 --> 00:00:09,390
of our modern networks.

6
00:00:09,390 --> 00:00:10,680
These are different services that ensure

7
00:00:10,680 --> 00:00:12,720
that network devices can discover each other,

8
00:00:12,720 --> 00:00:14,880
communicate efficiently and relay important

9
00:00:14,880 --> 00:00:16,650
system information to each other.

10
00:00:16,650 --> 00:00:18,270
There are several key network services

11
00:00:18,270 --> 00:00:19,410
that we're going to discuss,

12
00:00:19,410 --> 00:00:24,410
including DNS, DHCP, SQL services, SNMP, and Syslog.

13
00:00:25,620 --> 00:00:28,170
Each of these services does utilize different ports

14
00:00:28,170 --> 00:00:29,910
that will help facilitate their operations

15
00:00:29,910 --> 00:00:31,740
and to enable seamless network functionality

16
00:00:31,740 --> 00:00:34,110
for all of our end users and clients.

17
00:00:34,110 --> 00:00:36,720
First, let's talk about DNS.

18
00:00:36,720 --> 00:00:39,060
Now, DNS, or the Domain Name System,

19
00:00:39,060 --> 00:00:41,100
is just like the internet's phone book.

20
00:00:41,100 --> 00:00:44,100
This system is used to translate human friendly domain names

21
00:00:44,100 --> 00:00:48,840
like www.diontraining.com into an IP address that computers

22
00:00:48,840 --> 00:00:51,630
can use to identify each other on a network.

23
00:00:51,630 --> 00:00:55,110
Now, DNS is going to use port 53 by default,

24
00:00:55,110 --> 00:00:56,430
and this is where DNS servers

25
00:00:56,430 --> 00:00:58,830
are going to listen to requests from clients.

26
00:00:58,830 --> 00:01:01,320
Now, the Domain Name System protocol is actually kind

27
00:01:01,320 --> 00:01:03,030
of unique because it actually operates

28
00:01:03,030 --> 00:01:07,560
on two different transport protocols, both TCP and UDP.

29
00:01:07,560 --> 00:01:10,410
By default, it's going to use UDP for querying

30
00:01:10,410 --> 00:01:13,470
and response messages that fit within a single packet.

31
00:01:13,470 --> 00:01:15,600
If there's a larger message that needs to be sent,

32
00:01:15,600 --> 00:01:18,150
then it's going to use TCP for those larger messages,

33
00:01:18,150 --> 00:01:19,800
including things like zone transfers

34
00:01:19,800 --> 00:01:22,290
between two different DNS servers.

35
00:01:22,290 --> 00:01:24,450
Second, we have DHCP.

36
00:01:24,450 --> 00:01:27,690
DHCP, or the Dynamic Host Configuration Protocol,

37
00:01:27,690 --> 00:01:30,300
is used to automate the assignment of IP addresses,

38
00:01:30,300 --> 00:01:33,450
subnet masks, gateways, and other networking parameters

39
00:01:33,450 --> 00:01:34,980
to a client device.

40
00:01:34,980 --> 00:01:37,110
This automation simplifies the process

41
00:01:37,110 --> 00:01:39,810
of configuring devices on our IP networks.

42
00:01:39,810 --> 00:01:42,090
These DHCP servers will typically listen

43
00:01:42,090 --> 00:01:44,460
for client requests over port 67

44
00:01:44,460 --> 00:01:47,370
using UDP as a transport mechanism,

45
00:01:47,370 --> 00:01:49,530
and the DHCP clients will receive responses

46
00:01:49,530 --> 00:01:53,670
back over port 68, again using UDP.

47
00:01:53,670 --> 00:01:56,010
Third, we have SQL services.

48
00:01:56,010 --> 00:01:58,350
Now, SQL services refers to the protocols

49
00:01:58,350 --> 00:02:00,030
that are used by database servers

50
00:02:00,030 --> 00:02:02,220
to manage, query and control operations

51
00:02:02,220 --> 00:02:04,950
from the client applications that are requesting them.

52
00:02:04,950 --> 00:02:06,690
Now, there isn't a single standard port

53
00:02:06,690 --> 00:02:09,300
for all SQL services because different providers

54
00:02:09,300 --> 00:02:11,009
who make different SQL servers

55
00:02:11,009 --> 00:02:13,050
have chosen to use different port numbers.

56
00:02:13,050 --> 00:02:14,760
But the two most common that you need to be aware

57
00:02:14,760 --> 00:02:18,630
of are the Microsoft SQL Server and MySQL.

58
00:02:18,630 --> 00:02:23,630
Microsoft's SQL Server will operate over port 1433,

59
00:02:23,700 --> 00:02:28,410
and the MySQL server will operate over port 3306.

60
00:02:28,410 --> 00:02:30,300
Now, these ports will allow for the management

61
00:02:30,300 --> 00:02:32,280
of the databases and the retrieval of data

62
00:02:32,280 --> 00:02:35,520
by authorized users and applications over these ports,

63
00:02:35,520 --> 00:02:37,260
so keep that in mind.

64
00:02:37,260 --> 00:02:40,560
The fourth one we have is known as SNMP.

65
00:02:40,560 --> 00:02:43,860
Now, SNMP, or the Simple Network Management Protocol,

66
00:02:43,860 --> 00:02:45,450
is used for collecting information

67
00:02:45,450 --> 00:02:49,140
from and configuring different network devices like servers,

68
00:02:49,140 --> 00:02:53,790
printers, hubs, switches, and routers over an IP network.

69
00:02:53,790 --> 00:02:57,853
SNMP operates over two ports, which is port 161 and 162,

70
00:02:59,490 --> 00:03:01,950
using the user datagram protocol.

71
00:03:01,950 --> 00:03:05,280
Port 161 is used by SNMP managers

72
00:03:05,280 --> 00:03:07,530
that are communicating with the SNMP agents

73
00:03:07,530 --> 00:03:10,350
on the different devices to conduct polling.

74
00:03:10,350 --> 00:03:14,130
Port 162 is used when agents want to send unsolicited

75
00:03:14,130 --> 00:03:16,890
trap messages back to the SNMP manager,

76
00:03:16,890 --> 00:03:18,660
which essentially is reporting information

77
00:03:18,660 --> 00:03:21,150
back to the manager about that client device.

78
00:03:21,150 --> 00:03:23,580
SNMP is crucial for network diagnostics

79
00:03:23,580 --> 00:03:24,690
and performance monitoring,

80
00:03:24,690 --> 00:03:26,040
and is something you'll use heavily

81
00:03:26,040 --> 00:03:28,680
as a network administrator or network technician.

82
00:03:28,680 --> 00:03:30,450
The fifth and final network service port

83
00:03:30,450 --> 00:03:33,510
and protocol we need to discuss is syslog.

84
00:03:33,510 --> 00:03:36,300
Now, syslog stands for system logging.

85
00:03:36,300 --> 00:03:38,370
And the system logging protocol is a standard

86
00:03:38,370 --> 00:03:40,350
for message logging that allows devices

87
00:03:40,350 --> 00:03:43,140
to send event messages across IP networks

88
00:03:43,140 --> 00:03:46,920
to an event message collector known as a syslog server.

89
00:03:46,920 --> 00:03:49,710
These syslog servers will then store, process,

90
00:03:49,710 --> 00:03:51,510
or forward the logs as needed,

91
00:03:51,510 --> 00:03:53,460
based on the requirements you have.

92
00:03:53,460 --> 00:03:56,550
Syslog operates over port 514,

93
00:03:56,550 --> 00:04:00,630
using either UDP or TCP, depending on your use case.

94
00:04:00,630 --> 00:04:02,790
If you want to use standard messaging and logging,

95
00:04:02,790 --> 00:04:07,110
by default, it will use UDP over port 514.

96
00:04:07,110 --> 00:04:08,400
But if you have a situation

97
00:04:08,400 --> 00:04:10,320
where reliability becomes a concern,

98
00:04:10,320 --> 00:04:15,180
you can configure it to use TCP over port 514 instead.

99
00:04:15,180 --> 00:04:17,370
Alright, when it comes to network service ports

100
00:04:17,370 --> 00:04:19,110
and protocols, I want you to remember

101
00:04:19,110 --> 00:04:20,880
a couple of key things.

102
00:04:20,880 --> 00:04:22,050
These ports and protocols

103
00:04:22,050 --> 00:04:23,700
are crucial for the smooth functioning

104
00:04:23,700 --> 00:04:26,280
of digital communications and network management.

105
00:04:26,280 --> 00:04:29,040
Each one has a certain purpose that you need to be aware of.

106
00:04:29,040 --> 00:04:32,100
DNS is used for resolving names to IP addresses

107
00:04:32,100 --> 00:04:33,840
like a giant internet phone book,

108
00:04:33,840 --> 00:04:36,570
and it does this over port 53.

109
00:04:36,570 --> 00:04:39,570
DHCP is used for assigning network parameters

110
00:04:39,570 --> 00:04:41,820
like the IP address, the subnet mask,

111
00:04:41,820 --> 00:04:45,150
the gateway, and the DNS IPs for a given system,

112
00:04:45,150 --> 00:04:48,840
and it does this using ports 67 and 68.

113
00:04:48,840 --> 00:04:52,080
When it comes to SQL services, there are various ports used,

114
00:04:52,080 --> 00:04:53,580
but the two you need to remember

115
00:04:53,580 --> 00:04:58,410
is Microsoft's SQL Server operates on port 1433,

116
00:04:58,410 --> 00:05:02,293
and MySQL server is going to operate over port 3306

117
00:05:02,293 --> 00:05:06,150
to be able to do your database management and data querying.

118
00:05:06,150 --> 00:05:07,650
When it comes to SNMP,

119
00:05:07,650 --> 00:05:09,450
we're going to use this for network management,

120
00:05:09,450 --> 00:05:13,557
and it operates over ports 161 and 162.

121
00:05:13,557 --> 00:05:16,740
And finally, we have syslog that's used for event logging,

122
00:05:16,740 --> 00:05:20,940
and this occurs over port 514, using UDP by default,

123
00:05:20,940 --> 00:05:24,963
or TCP as a backup if reliability is a concern for you.