Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
910
Views
0
Helpful
6
Replies

Port numbers

mohammedmahmoud
Level 11
Level 11

‎03-09-2007 09:02 AM - edited ‎03-03-2019 04:06 PM

Hi All,

While reviewing the IANA port number assignment:

http://www.iana.org/assignments/port-numbers

I've noticed a weird phenomena, FTP for example as we all know uses TCP ports 20 and 21, in the document it is stated that it uses both TCP and UDP, most of the protocols have this symptom, is there any logical explanation for this ?

Thanks in advance,

Mohammed Mahmoud.

Labels:
0 Helpful
6 Replies 6

Danilo Dy
VIP Alumni
VIP Alumni

‎03-09-2007 09:21 AM

It gives you an option to use either TCP or UDP if the application permits (not all BTW). Here is more detail on what is TCP and UDP, their advantages and disadvantages, etc.. http://www.laynetworks.com/Comparative%20analysis_TCP%20Vs%20UDP.htm

0 Helpful

mohammedmahmoud
Level 11
Level 11
In response to Danilo Dy

‎03-09-2007 09:34 AM

Hi Medan,

Thanks a lot, the aim of my question was when permitting or denying a certain protocol by denying its port number, will i have to deny both TCP and UDP.

Thanks in advance,

Mohammed Mahmoud.

0 Helpful

Danilo Dy
VIP Alumni
VIP Alumni
In response to mohammedmahmoud

‎03-09-2007 10:05 AM

Well, Firewalls/ACL's have a default deny any any at the bottom of the rules. Even you don't put a rule to block them, it well be block. But some ports have to block on top or in the middle of the Firewall rules or ACL, you should deny their well known port and protocol unless otherwise advise.

The TCP/UDP is the programmers choice of protocol to be use by its program depends on its architecture and/or operations. Some put a configurable feature for the user to choose between TCP and UDP

0 Helpful

mohammedmahmoud
Level 11
Level 11
In response to Danilo Dy

‎03-09-2007 10:21 AM

Thanks Medan,

But my question is simply for example, for me to assure denying FTP do i have to deny both its TCP and UDP ports, and the same for every protocol that supports both TCP and UDP as stated by IANA ?

Thanks in advance,

Mohammed Mahmoud.

0 Helpful

Danilo Dy
VIP Alumni
VIP Alumni
In response to mohammedmahmoud

‎03-09-2007 10:55 AM

Nope, no need to block both. Just block TCP will do. Same for other ports, just block their protocol - TCP or UDP, not TCP and UDP

0 Helpful

jhimye
Level 1
Level 1
In response to Danilo Dy

‎03-09-2007 01:27 PM

Just want to add....

I don't know how many services are like DNS, but it uses both TCP and UDP on port 53, but for different functions. UDP for lookups, and TCP for zone transfers. FYI...

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card