Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions

    • Ports and Protocols

    Home FortiManager 6.4.0 Ports and Protocols
    6.4.0
    6.4.0
    6.2.0
    6.0.0

    Incoming ports

    Incoming ports

    The following table identifies ports for traffic that can be received by FortiManager and FortiAnalyzer units. The table excludes the incoming ports used between FortiManager and FortiGuard. For information about incoming ports used between FortiManager and FortiGuard, see FortiManager and FortiGuard.

    Incoming Port Purpose Port(s)

    Ping

    ICMP protocol

    SSH administrative access to the CLI

    TCP/22

    Telnet administrative access to the CLI

    TCP/23

    HTTP administrative access to the GUI

    TCP/80

    HTTPS administrative access to the GUI

    TCP/443

    Receive logs from FortiGate and FortiClient

    Synchronize log database between FortiAnalyzer HA units

    TCP/514

    FortiManager listens for requests from FortiGate to set up central management (FGFM tunnel requests for IPv4)

    TCP/541 (IPv4)

    TCP/542 (IPv6)

    Log aggregation server (requires FortiManager 800 series or higher models).

    TCP/3000

    FortiManager high-availability (HA) and configuration synchronization

    TCP/5199

    Web Service

    TCP/8080

    SNMP query

    UDP/161

    Syslog, log forwarding

    Log forwarding uses the OFTPD protocol.

    UDP/514

    If reliable logging is enabled, TCP 514 is used.

    EMS for Chromebooks logging

    TCP/8443

    WebFilter queries, AV & IPS updates, when FortiManager is operating as a FortiGuard override server for FortiGate

    UDP/53, UDP/8888

    TCP/80, TCP/8888

    Antispam, when FortiManager is operating as a FortiGuard override server for FortiGate

    TCP/8889

    UDP/8889

    Registration for license validation and UTM updates (AV, IPS), when FortiManager is operating as a FortiGuard override server for FortiGate

    		 TCP/443, TCP/8890
    Previous
    Next

    Incoming ports

    Incoming ports

    The following table identifies ports for traffic that can be received by FortiManager and FortiAnalyzer units. The table excludes the incoming ports used between FortiManager and FortiGuard. For information about incoming ports used between FortiManager and FortiGuard, see FortiManager and FortiGuard.

    Incoming Port Purpose Port(s)

    Ping

    ICMP protocol

    SSH administrative access to the CLI

    TCP/22

    Telnet administrative access to the CLI

    TCP/23

    HTTP administrative access to the GUI

    TCP/80

    HTTPS administrative access to the GUI

    TCP/443

    Receive logs from FortiGate and FortiClient

    Synchronize log database between FortiAnalyzer HA units

    TCP/514

    FortiManager listens for requests from FortiGate to set up central management (FGFM tunnel requests for IPv4)

    TCP/541 (IPv4)

    TCP/542 (IPv6)

    Log aggregation server (requires FortiManager 800 series or higher models).

    TCP/3000

    FortiManager high-availability (HA) and configuration synchronization

    TCP/5199

    Web Service

    TCP/8080

    SNMP query

    UDP/161

    Syslog, log forwarding

    Log forwarding uses the OFTPD protocol.

    UDP/514

    If reliable logging is enabled, TCP 514 is used.

    EMS for Chromebooks logging

    TCP/8443

    WebFilter queries, AV & IPS updates, when FortiManager is operating as a FortiGuard override server for FortiGate

    UDP/53, UDP/8888

    TCP/80, TCP/8888

    Antispam, when FortiManager is operating as a FortiGuard override server for FortiGate

    TCP/8889

    UDP/8889

    Registration for license validation and UTM updates (AV, IPS), when FortiManager is operating as a FortiGuard override server for FortiGate

    		 TCP/443, TCP/8890
    Previous
    Next