CompTIA Security+ Question H-5

A security administrator has configured FTP in passive mode. Which of the following ports should the security administrator allow on the firewall by default?

A. 20
B. 21
C. 22
D. 23

Answer: B

Explanation:
When establishing an FTP session, clients start a connection to an FTP server that listens on TCP port 21 by default.