FortiAnalyzer

Syslog, OFTP, Registration, Quarantine, Log & Report

TCP/514

FortiAP

CAPWAP

UDP/5246-5247

FortiAuthenticator

LDAP, PKI Authentication

TCP/389

UDP/389

RADIUS

UDP/1812

FSSO

TCP/8000

RADIUS Accounting

UDP/1813

SCEP

TCP/80, TCP/443

CRL Download

TCP/80

External Captive Portal

TCP/443

FortiExtender

Data port

UDP/5246, UDP/25246

FortiGate

HA Heartbeat

ETH Layer 0x8890, 0x8891, 0x8893

HA Synchronization

TCP/703

UDP/703

IPsec VPN

UDP/500, UDP/4500

ESP (IP 50)

IPsec VPN Forward Error Correction

UDP/50000

Unicast Heartbeat for Azure

UDP/730

DNS for Azure

UDP/53

FortiGate Cloud

Registration, Quarantine, Log & Report, Syslog, Contract Validation

TCP/443

OFTP

TCP/514

Management

TCP/541

FortiGuard

AV/IPS update

TCP/443, TCP/8890

Cloud Application Database

TCP/9582

FortiGuard Queries

UDP/53, UDP/8888

TCP/53, TCP/443, TCP/8888

DNS

UDP/53, UDP/8888

Registration

TCP/80

Alert Email, Virus sample

TCP/25

Management, Firmware, SMS, Licensing, Policy Override

TCP/443

Central Management, Analysis

TCP/541

IPv4 FGFM tunnel

TCP/541

IPv6 FGFM tunnel

TCP/542

Secure DNS filter

TCP/53, TCP/853

IPAM Service

TCP/443

IoT Service

TCP/443

FortiDDNS

TCP/443

FortiGuard persistent connection for updates (2U and VM models only)

TCP/443

FortiManager

IPv4 FGFM management

TCP/541

IPv6 FGFM management

TCP/542

Log & Report

TCP/514

AntiSpam, WebFilter queries

UDP/53, UDP/8888

TCP/80, TCP/8888

FortiGuard and FortiClient Web Filter and Email Filter

TCP/8900

Registration for license validation and UTM updates (AV, IPS)

TCP/443, TCP/8890

FortiSandbox

OFTP

TCP/514

FortiSwitch

FortiLink

UDP/5246-5247

FortiToken Cloud

Two factor authentication request to FortiToken Cloud (ftc.fortinet.com)

TCP/8686

FortiToken Mobile

Two factor request to push proxy (push.fortinet.com)

TCP/443

Using FAC, the request is sent to FAC

UDP/1812

FSSO

FSSO

TCP/8001

Others

email notification

TCP/465

netflow collector

UDP/2055