Skip to main content
PacketMentor logo
Open menu
Home
Training
Learn
CCNA Library (74)
Browse all CCNA topics →
Network (13)
Device Operations (5)
Network Access (12)
Wireless (6)
IP Connectivity (10)
IP Services (11)
Security (10)
Automation (7)
Network+ Library (77)
Browse all Network+ topics →
1.0Networking Concepts (22)
2.0Network Implementation (17)
3.0Network Operations (16)
4.0Network Security (15)
5.0Network Troubleshooting (7)
NSE 4 Library (45)
CCNP Library (26)
Practice
All practice →
Troubleshooting Labs
Packet Tracer Labs
Interactive Simulators
Mock ExamPricing
Contact 📞 +1 (860) 556-3010 Book a Call
← All topics
CompTIA Network+ Network Fundamentals Foundational

Common Ports and Protocols — N10-009 Reference Table

Every port and protocol CompTIA Network+ (N10-009) expects you to memorize. Grouped by category with TCP/UDP, the encrypted alternative where one exists, and the one thing most students forget.

Quick summary
  • Network+ tests port numbers by rote. There is no shortcut — memorize them. But group them by *category*, not alphabetically, and you'll retain twice as much.
  • For every insecure protocol, know the encrypted replacement and its port: FTP → SFTP/FTPS, HTTP → HTTPS, Telnet → SSH, LDAP → LDAPS, SNMP → SNMPv3.
  • Some protocols use BOTH TCP and UDP (DNS, LDAP). Some only appear in one direction (DHCP client 68, server 67).

Why this matters

The N10-009 blueprint calls out “common ports and protocols” as a stand-alone objective. Expect a handful of straight-recall questions: “Which port does LDAPS use?” and “Which protocol runs on TCP 3389?” — no context, no scenario. If you know the table below cold, those points are free.

Category 1 — File transfer & remote access

PortProtocolTCP/UDPSecure?
20 / 21FTP (data / control)TCPNo
22SSH / SCP / SFTPTCPYes
23TelnetTCPNo
3389RDPTCP (also UDP for perf)Yes
5900VNCTCPDepends
989 / 990FTPS (data / control)TCPYes

Category 2 — Mail

PortProtocolTCP/UDPNotes
25SMTPTCPServer-to-server.
110POP3TCPLegacy client pull.
143IMAPTCPModern client pull.
465SMTPS (SSL)TCPDeprecated but still tested.
587SMTP submission (TLS)TCPThe modern outbound.
993IMAPSTCP
995POP3STCP

Category 3 — Web & directory

PortProtocolTCP/UDP
80HTTPTCP
443HTTPSTCP
389LDAPTCP + UDP
636LDAPSTCP
88KerberosTCP + UDP

Category 4 — Network services

PortProtocolTCP/UDPNotes
53DNSUDP + TCPUDP for queries, TCP for zone transfers & big responses.
67 / 68DHCP (server / client)UDPBroadcast at layer 2.
69TFTPUDPNo auth, no encryption.
123NTPUDP
162SNMP trapUDP
161SNMP get/setUDP
514SyslogUDP (usually)Some deployments use TCP 6514 for TLS-secured syslog.
6514Syslog over TLSTCPThe secure replacement.

Category 5 — Auth & VPN

PortProtocolTCP/UDPNotes
500IKE (IPsec Phase 1)UDP
4500IPsec NAT-TraversalUDPUsed when a NAT device is between the peers.
1701L2TPUDP
1723PPTPTCPInsecure, still shows on the exam.
1812RADIUS authUDP
1813RADIUS accountingUDP
49TACACS+TCPEncrypts the whole payload — differentiates it from RADIUS.

Category 6 — Databases & other

PortProtocolTCP/UDP
1433Microsoft SQL ServerTCP
3306MySQL / MariaDBTCP
5432PostgreSQLTCP
5060 / 5061SIP / SIP-TLSTCP + UDP / TCP
3389RDPTCP

Common exam traps

  1. DHCP server = UDP 67, client = UDP 68. The direction matters. A firewall question that asks “which port must you permit for clients to reach the DHCP server?” — you permit destination UDP 67.
  2. DNS = UDP AND TCP. UDP for normal queries, TCP for zone transfers between servers or replies over 512 bytes (very common with DNSSEC).
  3. RADIUS encrypts the password only. TACACS+ encrypts the entire payload. That’s why TACACS+ is preferred for admin authentication.
  4. SNMPv1/v2c community strings are cleartext. SNMPv3 adds authentication and encryption — always the “secure” answer.
  5. Syslog is UDP 514 by default. If the exam mentions “secure syslog”, think TCP 6514 with TLS.

Cheat strip

FTP   20/21 TCP         SFTP  22 TCP     FTPS  989/990 TCP
Telnet 23 TCP           SSH   22 TCP
HTTP   80 TCP           HTTPS 443 TCP
DNS    53 UDP+TCP       DHCP  67/68 UDP
NTP    123 UDP          SNMP  161 UDP    SNMPTrap 162 UDP
Syslog 514 UDP          SyslogTLS 6514 TCP
LDAP   389              LDAPS 636 TCP
RADIUS 1812/1813 UDP    TACACS+ 49 TCP
IKE    500 UDP          IPsec NAT-T 4500 UDP
RDP    3389 TCP+UDP     SMB   445 TCP
SMTP   25 TCP           SMTPS 465 / SUB 587
POP3   110 / POP3S 995  IMAP  143 / IMAPS 993
SQL    1433 (MSSQL) / 3306 (MySQL) / 5432 (Postgres)
Master this on a real network

Want this drilled into reflex?

1:1 weekly sessions, live feedback on your labs, and US interview prep — built around the Network+® exam blueprint. Free first session. No card on file until you decide.

Claim my free session →

Get the free CCNA 12-week roadmap

You're already reading up on Common Ports and Protocols — N10-009 Reference Table. The roadmap is the order I recommend studying every CCNA topic in — with what to lab each week and where Common Ports and Protocols — N10-009 Reference Table fits. A written personal reply, not an autoresponder. Expect it within one business day.

Personal reply from a senior network engineer. No third-party tracking. Unsubscribe any time.