Fortinet Document Library

Version:


Table of Contents

7.0.0
Download PDF
Copy Link

Outgoing Ports

Product

Purpose

Ports and protocols

Configurable

FortiAnalyzer

Syslog, OFTP, Registration, Quarantine, Log & Report

TCP/514

 

FortiAP

CAPWAP

UDP/5246-5247

 

FortiAuthenticator

LDAP, PKI Authentication

TCP/389

 

UDP/389

 

RADIUS

UDP/1812

 

FSSO

TCP/8000

 

RADIUS Accounting

UDP/1813

 

SCEP

TCP/80, TCP/443

 

CRL Download

TCP/80

 

External Captive Portal

TCP/443

 

FortiExtender

Data port

UDP/5246, UDP/25246

Yes

FortiGate

HA Heartbeat

ETH Layer 0x8890, 0x8891, 0x8893

 

HA Synchronization

TCP/703

 

UDP/703

 

IPsec VPN

UDP/500, UDP/4500

Yes

ESP (IP 50)

 

IPsec VPN Forward Error Correction

UDP/50000

 

Unicast Heartbeat for Azure

UDP/730

 

DNS for Azure

UDP/53

 

FortiGate Cloud

Registration, Quarantine, Log & Report, Syslog, Contract Validation

TCP/443

 

OFTP

TCP/514

 

Management

TCP/541

 

FortiGuard

 

AV/IPS update

TCP/443, TCP/8890

 

Cloud Application Database

TCP/9582

 

FortiGuard Queries

UDP/53, UDP/8888

 

TCP/53, TCP/443, TCP/8888

 

DNS

UDP/53, UDP/8888

 

Registration

TCP/80

 

Alert Email, Virus sample

TCP/25

 

Management, Firmware, SMS, Licensing, Policy Override

TCP/443

 

Central Management, Analysis

TCP/541

 

IPv4 FGFM tunnel

TCP/541

 

IPv6 FGFM tunnel

TCP/542

 

Secure DNS filter

TCP/53, TCP/853

 

IPAM Service

TCP/443

 

IoT Service

TCP/443

 

FortiDDNS

TCP/443

Yes

FortiGuard persistent connection for updates (2U and VM models only)

TCP/443

 

FortiManager

IPv4 FGFM management

TCP/541

 

IPv6 FGFM management

TCP/542

 

Log & Report

TCP/514

 

AntiSpam, WebFilter queries

UDP/53, UDP/8888

 

TCP/8888

 

Registration for license validation and UTM updates (AV, IPS)

TCP/443, TCP/8890

 

FortiSandbox

OFTP

TCP/514

 

FortiSwitch

FortiLink

UDP/5246-5247

Yes

FortiToken Cloud

Two factor authentication request to FortiToken Cloud (ftc.fortinet.com)

TCP/8686

 

FortiToken Mobile

Two factor request to push proxy (push.fortinet.com)

TCP/443

 

Using FAC, the request is sent to FAC

UDP/1812

 

FSSO

FSSO

TCP/8001

Yes

Others

email notification

TCP/465

Yes

netflow collector

UDP/2055

Yes

sflow collector

UDP/6343

Yes

Outgoing Ports

Product

Purpose

Ports and protocols

Configurable

FortiAnalyzer

Syslog, OFTP, Registration, Quarantine, Log & Report

TCP/514

 

FortiAP

CAPWAP

UDP/5246-5247

 

FortiAuthenticator

LDAP, PKI Authentication

TCP/389

 

UDP/389

 

RADIUS

UDP/1812

 

FSSO

TCP/8000

 

RADIUS Accounting

UDP/1813

 

SCEP

TCP/80, TCP/443

 

CRL Download

TCP/80

 

External Captive Portal

TCP/443

 

FortiExtender

Data port

UDP/5246, UDP/25246

Yes

FortiGate

HA Heartbeat

ETH Layer 0x8890, 0x8891, 0x8893

 

HA Synchronization

TCP/703

 

UDP/703

 

IPsec VPN

UDP/500, UDP/4500

Yes

ESP (IP 50)

 

IPsec VPN Forward Error Correction

UDP/50000

 

Unicast Heartbeat for Azure

UDP/730

 

DNS for Azure

UDP/53

 

FortiGate Cloud

Registration, Quarantine, Log & Report, Syslog, Contract Validation

TCP/443

 

OFTP

TCP/514

 

Management

TCP/541

 

FortiGuard

 

AV/IPS update

TCP/443, TCP/8890

 

Cloud Application Database

TCP/9582

 

FortiGuard Queries

UDP/53, UDP/8888

 

TCP/53, TCP/443, TCP/8888

 

DNS

UDP/53, UDP/8888

 

Registration

TCP/80

 

Alert Email, Virus sample

TCP/25

 

Management, Firmware, SMS, Licensing, Policy Override

TCP/443

 

Central Management, Analysis

TCP/541

 

IPv4 FGFM tunnel

TCP/541

 

IPv6 FGFM tunnel

TCP/542

 

Secure DNS filter

TCP/53, TCP/853

 

IPAM Service

TCP/443

 

IoT Service

TCP/443

 

FortiDDNS

TCP/443

Yes

FortiGuard persistent connection for updates (2U and VM models only)

TCP/443

 

FortiManager

IPv4 FGFM management

TCP/541

 

IPv6 FGFM management

TCP/542

 

Log & Report

TCP/514

 

AntiSpam, WebFilter queries

UDP/53, UDP/8888

 

TCP/8888

 

Registration for license validation and UTM updates (AV, IPS)

TCP/443, TCP/8890

 

FortiSandbox

OFTP

TCP/514

 

FortiSwitch

FortiLink

UDP/5246-5247

Yes

FortiToken Cloud

Two factor authentication request to FortiToken Cloud (ftc.fortinet.com)

TCP/8686

 

FortiToken Mobile

Two factor request to push proxy (push.fortinet.com)

TCP/443

 

Using FAC, the request is sent to FAC

UDP/1812

 

FSSO

FSSO

TCP/8001

Yes

Others

email notification

TCP/465

Yes

netflow collector

UDP/2055

Yes

sflow collector

UDP/6343

Yes