I come, I see, I conquer

                    —Gaius Julius Caesar

  博客园 :: 首页 :: 博问 :: 闪存 :: 新随笔 :: 联系 :: 订阅 订阅 :: 管理 ::

 

 

                                 图1、TCP/IP协议的相互关系

 

 

 

     

 

                                  图2、TCP/IP协议结构

 

 

     

  

                                  图3、TCP/IP协议套件(参考OSI模型)

 

 


IP协议号大全 (last updated 08 September 2005)

In the Internet Protocol version 4 (IPv4) [RFC791] there is a field,
called "Protocol", to identify the next level protocol.   This is an 8
bit field.   In Internet Protocol version 6 (IPv6) [RFC1883] this field
is called the "Next Header" field.

Assigned Internet Protocol Numbers

Decimal     Keyword      Protocol                          References
-------     -------      --------                          ----------
      0      HOPOPT       IPv6 Hop-by-Hop Option             [RFC1883]
      1      ICMP         Internet Control Message            [RFC792]
      2      IGMP         Internet Group Management          [RFC1112]
      3      GGP          Gateway-to-Gateway                  [RFC823]
      4      IP           IP in IP (encapsulation)           [RFC2003]
      5      ST           Stream                     [RFC1190,RFC1819]
      6      TCP          Transmission Control                [RFC793]
      7      CBT          CBT                              [Ballardie]
      8      EGP          Exterior Gateway Protocol      [RFC888,DLM1]
      9      IGP          any private interior gateway          [IANA]
                        (used by Cisco for their IGRP)
     10      BBN-RCC-MON BBN RCC Monitoring                     [SGC]
     11      NVP-II       Network Voice Protocol          [RFC741,SC3]
     12      PUP          PUP                              [PUP,XEROX]
     13      ARGUS        ARGUS                                 [RWS4]
     14      EMCON        EMCON                                  [BN7]
     15      XNET         Cross Net Debugger             [IEN158,JFH2]
     16      CHAOS        Chaos                                  [NC3]
     17      UDP          User Datagram                   [RFC768,JBP]
     18      MUX          Multiplexing                     [IEN90,JBP]
     19      DCN-MEAS     DCN Measurement Subsystems            [DLM1]
     20      HMP          Host Monitoring                 [RFC869,RH6]
     21      PRM          Packet Radio Measurement               [ZSU]
     22      XNS-IDP      XEROX NS IDP                [ETHERNET,XEROX]
     23      TRUNK-1      Trunk-1                               [BWB6]
     24      TRUNK-2      Trunk-2                               [BWB6]
     25      LEAF-1       Leaf-1                                [BWB6]
     26      LEAF-2       Leaf-2                                [BWB6]
     27      RDP          Reliable Data Protocol          [RFC908,RH6]
     28      IRTP         Internet Reliable Transaction   [RFC938,TXM]
     29      ISO-TP4      ISO Transport Protocol Class 4 [RFC905,RC77]
     30      NETBLT       Bulk Data Transfer Protocol     [RFC969,DDC1]
     31      MFE-NSP      MFE Network Services Protocol   [MFENET,BCH2]
     32      MERIT-INP    MERIT Internodal Protocol              [HWB]
     33      DCCP         Datagram Congestion Control Protocol   [RFC-ietf-dccp-spec-11.txt]
     34      3PC          Third Party Connect Protocol          [SAF3]
     35      IDPR         Inter-Domain Policy Routing Protocol [MXS1]
     36      XTP          XTP                                    [GXC]
     37      DDP          Datagram Delivery Protocol             [WXC]
     38      IDPR-CMTP    IDPR Control Message Transport Proto [MXS1]
     39      TP++         TP++ Transport Protocol                [DXF]
     40      IL           IL Transport Protocol             [Presotto]
     41      IPv6         Ipv6                               [Deering]   
     42      SDRP         Source Demand Routing Protocol        [DXE1]
     43      IPv6-Route   Routing Header for IPv6            [Deering]
     44      IPv6-Frag    Fragment Header for IPv6           [Deering]
     45      IDRP         Inter-Domain Routing Protocol    [Sue Hares]
     46      RSVP         Reservation Protocol            [Bob Braden]
     47      GRE          General Routing Encapsulation      [Tony Li]
     48      MHRP         Mobile Host Routing Protocol[David Johnson]
     49      BNA          BNA                           [Gary Salamon]
     50      ESP          Encap Security Payload             [RFC2406]
     51      AH           Authentication Header              [RFC2402]
     52      I-NLSP       Integrated Net Layer Security   TUBA [GLENN]
     53      SWIPE        IP with Encryption                     [JI6]
     54      NARP         NBMA Address Resolution Protocol   [RFC1735]
     55      MOBILE       IP Mobility                        [Perkins]
     56      TLSP         Transport Layer Security Protocol    [Oberg]
                        using Kryptonet key management
     57      SKIP         SKIP                               [Markson]
     58      IPv6-ICMP    ICMP for IPv6                      [RFC1883]
     59      IPv6-NoNxt   No Next Header for IPv6            [RFC1883]
     60      IPv6-Opts    Destination Options for IPv6       [RFC1883]
     61                  any host internal protocol            [IANA]
     62      CFTP         CFTP                             [CFTP,HCF2]
     63                  any local network                     [IANA]
     64      SAT-EXPAK    SATNET and Backroom EXPAK              [SHB]
     65      KRYPTOLAN    Kryptolan                             [PXL1]
     66      RVD          MIT Remote Virtual Disk Protocol       [MBG]
     67      IPPC         Internet Pluribus Packet Core          [SHB]
     68                  any distributed file system           [IANA]
     69      SAT-MON      SATNET Monitoring                      [SHB]
     70      VISA         VISA Protocol                         [GXT1]
     71      IPCV         Internet Packet Core Utility           [SHB]
     72      CPNX         Computer Protocol Network Executive   [DXM2]
     73      CPHB         Computer Protocol Heart Beat          [DXM2]
     74      WSN          Wang Span Network                      [VXD]
     75      PVP          Packet Video Protocol                  [SC3]
     76      BR-SAT-MON   Backroom SATNET Monitoring             [SHB]
     77      SUN-ND       SUN ND PROTOCOL-Temporary              [WM3]
     78      WB-MON       WIDEBAND Monitoring                    [SHB]
     79      WB-EXPAK     WIDEBAND EXPAK                         [SHB]
     80      ISO-IP       ISO Internet Protocol                  [MTR]
     81      VMTP         VMTP                                  [DRC3]
     82      SECURE-VMTP SECURE-VMTP                           [DRC3]
     83      VINES        VINES                                  [BXH]
     84      TTP          TTP                                    [JXS]
     85      NSFNET-IGP   NSFNET-IGP                             [HWB]
     86      DGP          Dissimilar Gateway Protocol      [DGP,ML109]
     87      TCF          TCF                                   [GAL5]
     88      EIGRP        EIGRP                            [CISCO,GXS]
     89      OSPFIGP      OSPFIGP                       [RFC1583,JTM4]
     90      Sprite-RPC   Sprite RPC Protocol             [SPRITE,BXW]
     91      LARP         Locus Address Resolution Protocol      [BXH]
     92      MTP          Multicast Transport Protocol           [SXA]
     93      AX.25        AX.25 Frames                          [BK29]        
     94      IPIP         IP-within-IP Encapsulation Protocol    [JI6]
     95      MICP         Mobile Internetworking Control Pro.    [JI6]
     96      SCC-SP       Semaphore Communications Sec. Pro.     [HXH]    
     97      ETHERIP      Ethernet-within-IP Encapsulation   [RFC3378]
     98      ENCAP        Encapsulation Header          [RFC1241,RXB3]
     99                  any private encryption scheme         [IANA]
    100      GMTP         GMTP                                  [RXB5]
    101      IFMP         Ipsilon Flow Management Protocol    [Hinden]
    102      PNNI         PNNI over IP                        [Callon]
    103      PIM          Protocol Independent Multicast   [Farinacci]
    104      ARIS         ARIS                               [Feldman]
    105      SCPS         SCPS                                 [Durst]
    106      QNX         QNX                                 [Hunter]
    107     A/N         Active Networks                     [Braden]
    108     IPComp       IP Payload Compression Protocol    [RFC2393]
    109     SNP         Sitara Networks Protocol           [Sridhar]
    110     Compaq-Peer Compaq Peer Protocol                 [Volpe]
    111     IPX-in-IP    IPX in IP                              [Lee]
    112      VRRP        Virtual Router Redundancy Protocol [RFC3768]
    113      PGM          PGM Reliable Transport Protocol   [Speakman]
    114                  any 0-hop protocol                    [IANA]
    115     L2TP         Layer Two Tunneling Protocol         [Aboba]
    116      DDX         D-II Data Exchange (DDX)            [Worley]
    117     IATP       Interactive Agent Transfer Protocol   [Murphy]
    118      STP          Schedule Transfer Protocol             [JMP]
    119      SRP         SpectraLink Radio Protocol        [Hamilton]
    120      UTI       UTI                                  [Lothberg]
    121      SMP       Simple Message Protocol                [Ekblad]
    122     SM        SM                                  [Crowcroft]
    123     PTP       Performance Transparency Protocol       [Welzl]
    124      ISIS over IPv4                              [Przygienda]
    125      FIRE                                         [Partridge]
    126     CRTP      Combat Radio Transport Protocol       [Sautter]
    127     CRUDP     Combat Radio User Datagram            [Sautter]
    128      SSCOPMCE                                         [Waber]
    129      IPLT                                          [Hollbach]
    130      SPS     Secure Packet Shield                   [McIntosh]
    131      PIPE    Private IP Encapsulation within IP        [Petri]
    132      SCTP    Stream Control Transmission Protocol    [Stewart]
    133      FC      Fibre Channel                         [Rajagopal]
    134      RSVP-E2E-IGNORE                                [RFC3175]
    135      Mobility Header                                [RFC3775]
    136      UDPLite                                        [RFC3828]
    137      MPLS-in-IP                                     [RFC4023]
    138-252 Unassigned                                        [IANA]
    253      Use for experimentation and testing            [RFC3692]
    254      Use for experimentation and testing            [RFC3692]
    255                  Reserved                              [IANA

 

 

 

TOPSEC防火墙中的自定义服务:

名称 协议 端口 说明
IP 0x0800 * Internet Protocol packet
ARP 0x0806 * Address Resolution packet
LOOP 0x0060 * Ethernet Loopback packet
PUP 0x0200 * Xerox PUP packet
PUPAT 0x0201 * Xerox PUP Addr Trans packet
X25 0x0805 * CCITT X.25
BPQ 0x08FF * G8BPQ AX.25 Ethernet Packet
IEEEPUP 0x0a00 * Xerox IEEE802.3 PUP packet
IEEEPUPAT 0x0a01 * Xerox IEEE802.3 PUP Addr Trans packet
DEC 0x6000 * DEC Assigned proto
DNA_DL 0x6001 * DEC DNA Dump/Load
DNA_RC 0x6002 * DEC DNA Remote Console
DNA_RT 0x6003 * DEC DNA Routing
LAT 0x6004 * DEC LAT
DIAG 0x6005 * DEC Diagnostics
CUST 0x6006 * DEC Customer use
SCA 0x6007 * DEC Systems Comms Arch
RARP 0x8035 * Reverse Addr Res packet
ATALK 0x809B * Appletalk DDP
AARP 0x80F3 * Appletalk AARP
8021Q 0x8100 * 802.1Q VLAN Extended Header
IPX 0x8137 * IPX over DIX
IPV6 0x86DD * IPv6 over bluebook
PPP_DISC 0x8863 * PPPoE discovery messages
PPP_SES 0x8864 * PPPoE session messages
ATMMPOA 0x884c * MultiProtocol Over ATM
ATMFATE 0x8884 * Frame-based ATM Transport
ICMP 1 * Internet Control Message Protocol
IGMP 2 * Internet Group Management Protocol
IPIP 4 * IPIP tunnels (older KA9Q tunnels use 94)
TCP TCP|6 * Transmission Control Protocol
EGP 8 * Exterior Gateway Protocol
PUP 12 * PUP protocol
UDP UDP|17 * User Datagram Protocol
IDP 22 * XNS IDP protocol
RSVP 46 * RSVP protocol
GRE 47 * Cisco GRE tunnels (rfc 1701,1702)
IPV6 41 * IPv6-in-IPv4 tunnelling
PIM 103 * Protocol Independent Multicast
ESP 50 * Encapsulation Security Payload protocol
AH 51 * Authentication Header protocol
COMP 108 * Compression Header protocol
PING 1 8[TYPE]
Echo(TCP) TCP|6 7
Echo(UDP) UDP|17 7
Discard(TCP TCP|6 9
Discard(UDP) UDP|17 9
Daytime(TCP) TCP|6 13
Daytime(UDP) UDP|17 13
NETSTAT TCP|6 15
Quotd(TCP) TCP|6 17
Quotd(UDP) UDP|17 17
Chargen(TCP) TCP|6 19
Chargen(UDP) UDP|17 19
FTP TCP|6 21
SSH TCP|6 22
TELNET TCP|6 23
SMTP TCP|6 25
TIME(TCP) TCP|6 37
TIME(UDP) UDP|17 37
WINS_Replication(TCP) TCP|6 42
WINS_Replication(UDP) UDP|17 42
TACACS_PLUS TCP|6 49
TACACS UDP|17 49
TACACS-DS TCP|6 65
SQL*NET TCP|6 66
Bootstrap_Server(DHCP) UDP|17 67
Bootstrap_Client UDP|17 68
DNS_Transfer TCP|6 53
DNS_Query UDP|17 53
TFTP UDP|17 69
Gopher TCP|6 70
Finger TCP|6 79
HTTP TCP|6 80
KERBEROS_KEY(TCP) TCP|6 88
KERBEROS_KEY(UDP) UDP|17 88
NPP TCP|6 92
X.400 TCP|6 102
RTELNET TCP|6 107
SNA_GAS TCP|6 108
POP3 TCP|6 110
SUNRPC TCP|6 111
AUTH TCP|6 113
SQLSERV TCP|6 118
NNTP TCP|6 119
NTP(TCP) TCP|6 123
NTP(UDP) UDP|17 123
IMAP TCP|6 143
SQL-NET TCP|6 150
SQLSRV TCP|6 156
SNMP UDP|17 161
SNMP-TRAP UDP|17 162
XDMCP TCP|6 177
BGP TCP|6 179
GACP TCP|6 190
IRC TCP|6 194
DLS TCP|6 197
DLS-MON TCP|6 198
SRC TCP|6 200
WAIS TCP|6 210
EPMAP(TCP) TCP|6 135
EPMAP(UDP) UDP|17 135
NETBIOS-NS UDP|17 137
NETBIOS-DGM UDP|17 138
NETBIOS-SSN(TCP) TCP|6 139
NETBIOS-SSN(UDP) UDP|17 139
MICROSOFT-DS(UDP) UDP|17 445
MICROSOFT-DS(TCP) TCP|6 445
HTTP-RPC-EPMAP(UDP) UDP|17 593
HTTP-RPC-EPMAP(TCP) TCP|6 593
HP-collector TCP|6 381
HP-managed-node TCP|6 382
HP-alarm-mgr TCP|6 383
LDAP TCP|6 389
LDAPS TCP|6 636
Netware_IP TCP|6 396
HTTPS TCP|6 443
SNPP TCP|6 444
Kerberos_passwd(TCP) TCP|6 464
Apple_QTC TCP|6 458
RCP TCP|6 469
ROUTER UDP|17 520
IPSEC_ISAKMP UDP|17 500
REXEC TCP|6 512
RLOGIN TCP|6 513
WHO UDP|17 513
RSH TCP|6 514
SYSLOG UDP|17 514
LPD TCP|6 515
EFS TCP|6 520
IBM-DB2 TCP|6 523
UUCP TCP|6 540
DHCPV6_Client TCP|6 546
DHCPV6_Server TCP|6 547
RTSP TCP|6 554
NNTPS TCP|6 563
MacFile TCP|6 548
IIOP UDP|17 530
CORBA-IIOP TCP|6 683
CORBA-IIOP-SSL TCP|6 684
IPCSERVER TCP|6 600
KERBEROS-ADM TCP|6 749
KERBEROS(TCP) TCP|6 750
KERBEROS(UDP) UDP|17 750
POP3_over_SSL TCP|6 995
SOCKS TCP|6 1080
WebSphere_admin_bootstrap TCP|6 900
WebSphere_admin_admin_lsd TCP|6 9000
WebSphere_servlet_engine TCP|6 8110
WebSphere_servlet_redirector TCP|6 9367
Vosaic TCP|6 1235
LotusNotes TCP|6 1352
WINS TCP|6 1512
MS-SQL-S TCP|6 1433
MS-SQL-M TCP|6 1434
MS-SQL-R UDP|17 1434
RADIUS_1645 UDP|17 1645
RADACCT_1645 UDP|17 1646
RADIUS_1812 UDP|17 1812
RADACCT_1813 UDP|17 1813
NFSD UDP|17 2049
MS_NetMeeting UDP|6 1503
MS_NetShow TCP|6 1755
SQLNet_1521 TCP|6 1521
SQLNet_1525 TCP|6 1525
L2TP UDP|17 1701
PPTP TCP|6 1723
H.225 UDP|17 1719
H.323 TCP|6 1720
MMS TCP|6 1755
MSN TCP|6 1863
NFS TCP|6 2049
CVSServer TCP|6 2401
MS_Theater UDP|17 2460
UPNP TCP|6 2869
Squid TCP|6 3128
MySQL TCP|6 3306
Cluster UDP|17 3343
MSTerminal TCP|6 3389
BINL UDP|17 4011
NAT-T UDP|17 4500
RTP UDP|17 5004
RTCP UDP|17 5005
AOL TCP|6 5190
SecurID(TCP) TCP|6 5510
SecurID(UDP) UDP|17 5510
pcAnywhere TCP|6 5632
RealAudio_ctrl TCP|6 7070
SIP(TCP) TCP|6 5060
SIP(UDP) UDP|17 5060
X11 TCP|6 6000
QQ UDP|17 8000
ASP.Net_Session TCP|6 42424

 

 

天清汉马防火墙中的预定义服务:

名称 内容(协议/源端口-目的端口) 引用
any All 44
ah IP/51 0
aol TCP/1-65535:5190-5194 0
bgp TCP/1-65535:179 0
bootpc UDP/1-65535:68 0
bootps UDP/1-65535:67 0
daytime TCP/1-65535:13,UDP/1-65535:13 0
dhcp UDP/1-65535:67-68 0
dns TCP/1-65535:53,UDP/1-65535:53 0
discard TCP/1-65535:9,UDP/1-65535:9 0
esp IP/50 0
finger TCP/1-65535:79 0
ftp TCP/1-65535:21 3
gopher TCP/1-65535:70 0
gre IP/47 0
h323 TCP/1-65535:1720,TCP/1-65535:1503,UDP/1-65535:1719 0
hostname TCP/1-65535:101 0
http TCP/1-65535:80 1
https TCP/1-65535:443 0
icmp IP/1 0
igmp IP/2 0
ike UDP/1-65535:500,UDP/1-65535:4500 0
imap TCP/1-65535:143 0
info_address ICMP/17 0
info_request ICMP/15 0
irc TCP/1-65535:6660-6669 0
internet-locator-service TCP/1-65535:389 0
l2tp UDP/1-65535:1701 0
ldap TCP/1-65535:389 0
msolap-ptp2 TCP/1-65535:2725 0
ms-olap TCP/1-65535:2393-2394 0
ms-sql-s TCP/1-65535:1433 0
ms-sql-m UDP/1-65535:1434 0
mysql TCP/1-65535:3306,UDP/1-65535:3306 0
netmeeting TCP/1-65535:1720 0
netbios-ns TCP/1-65535:137,UDP/1-65535:137 0
netbios-dgm TCP/1-65535:138,UDP/1-65535:138 0
netbios-ssn TCP/1-65535:139,UDP/1-65535:139 0
nfs TCP/1-65535:111,UDP/1-65535:111,TCP/1-65535:2049,UDP/1-65535:2049 0
nicname TCP/1-65535:43 0
nntp TCP/1-65535:119 0
ntp TCP/1-65535:123,UDP/1-65535:123 0
onc-rpc TCP/1-65535:111,UDP/1-65535:111 0
ospf IP/89 1
pc-anywhere TCP/1-65535:5631,UDP/1-65535:5632 0
pim IP/103 0
ping ICMP/8 3
ping6 IP/58 0
pop2 TCP/1-65535:109,UDP/1-65535:109 0
pop3 TCP/1-65535:110,UDP/1-65535:110 0
pptp IP/47,TCP/1-65535:1723 0
printer TCP/1-65535:515 0
quake UDP/1-65535:26000,UDP/1-65535:27000,UDP/1-65535:27910,UDP/1-65535:27960 0
radius UDP/1-65535:1812 0
radius-acct TCP/1-65535:1813,UDP/1-65535:1813 0
raudio UDP/1-65535:7070 0
rexec TCP/1-65535:512 0
rip UDP/1-65535:520 0
rlogin TCP/1-65535:513 0
rsh TCP/1-65535:514 0
rtsp TCP/1-65535:554,UDP/1-65535:554,TCP/1-65535:7070,UDP/1-65535:7070,TCP/1-65535:8080,UDP/1-65535:8080,TCP/1-65535:80 0
samba TCP/1-65535:139 0
sccp TCP/1-65535:2000 0
sip UDP/1-65535:5060 0
sip-msnmessenger TCP/1-65535:1863 0
shell TCP/1-65535:514 0
smtp TCP/1-65535:25 0
smux TCP/1-65535:199 0
snmp TCP/1-65535:161-162,UDP/1-65535:161-162 0
socks TCP/1-65535:1080,UDP/1-65535:1080 0
squid TCP/1-65535:3128,UDP/1-65535:3128 0
ssh TCP/1-65535:22 1
syslog UDP/1-65535:514 0
talk UDP/1-65535:517-518 0
tcp IP/6 0
telnet TCP/1-65535:23 0
tftp UDP/1-65535:69 0
time UDP/1-65535:37 0
timestamp ICMP/13 0
tproxy TCP/1-65535:8081,UDP/1-65535:8081 0
udp IP/17 0
uucp TCP/1-65535:540 0
vdolive TCP/1-65535:7000-7010 0
wais TCP/1-65535:210 0
webcache TCP/1-65535:8080,UDP/1-65535:8080 0
winframe TCP/1-65535:1494 0
who UDP/1-65535:513 0
x-windows TCP/1-65535:6000-6063 0
 

 

 

posted on 2008-10-31 18:58  jcsu  阅读(3036)  评论(0编辑  收藏  举报