GIAC Penetration Tester (GPEN) — Question 39

When a DNS server transfers its zone file to a remote system, what port does it typically use?

Answer options

• A. 53/TCP
• B. 153/UDP
• C. 35/TCP
• D. 53/UDP

Correct answer: D

Explanation

The correct answer is D, as DNS zone transfers typically use port 53 over UDP. Option A is incorrect because while port 53/TCP is used for other DNS queries, it is not the typical port for zone transfers. Options B and C are incorrect as they reference ports that do not relate to standard DNS operations.