CompTIA Network+ Practice Test

Disable ads (and more) with a membership for a one time $2.99 payment

Enhance your CompTIA Network+ skills. Prepare with comprehensive questions and hints for a successful exam experience. Excel in network management and troubleshooting!

Each practice test/flash card set has 50 randomly selected questions from a bank of over 500. You'll get a new set of questions each time!

Practice this question and more.

What protocol is used to encrypt DNS traffic over TCP port 853?

DNS over HTTPS (DoH)
Domain Name Security Extensions (DNSSEC)
DNS over TLS (DoT)
Secure Socket Layer (SSL)

The correct answer is: DNS over TLS (DoT)

The protocol used to encrypt DNS traffic over TCP port 853 is DNS over TLS (DoT). This protocol specifically focuses on providing encryption for DNS queries and responses, ensuring that the communication between clients and DNS servers is secure and private. DNS over TLS works by creating a secure channel using the Transport Layer Security (TLS) protocol, protecting the integrity and confidentiality of DNS data as it traverses the internet. By operating on TCP port 853, it directly establishes a reliable connection that instills trust in the information exchanged, mitigating risks such as eavesdropping and DNS spoofing. While DNS over HTTPS (DoH) also provides a method for encrypting DNS queries, it operates over a different port (typically TCP port 443) and encapsulates DNS queries within HTTPS traffic. Domain Name Security Extensions (DNSSEC) adds a layer of security to DNS by enabling the verification of the authenticity of DNS responses but does not encrypt the traffic. Secure Socket Layer (SSL) is a predecessor to TLS and is generally not used in modern applications due to various vulnerabilities and overall deprecation in favor of TLS. Thus, the identification of DNS over TLS (DoT) as the correct answer highlights its specific role in securing DNS traffic on the designated port,