Appendix A: Port numbers
Communications between the FortiRecorder appliance, cameras, and your computer require that any routers and firewalls between them permit specific protocols and port numbers.
The following tables list the default port numbers used by FortiRecorder services. Many are configurable. See the Configuring the public port numbers and domain name for incoming traffic; for outgoing traffic, see the documentation for each feature.
Outgoing traffic
These are the port numbers and protocols that FortiRecorder uses to connect to the cameras, your servers, and services on the Internet such as FortiCloud and FortiGuard.
Port Number |
Protocol |
Purpose |
---|---|---|
N/A |
ICMP |
|
N/A |
ARP |
MAC address resolution |
22 |
TCP |
SFTP for configuration backups. See Backups. |
25 |
TCP |
SMTP for alert email and notifications about motion detection. See Configuring alert email and Configuring notification triggers. |
53 |
UDP |
DNS queries for domain names. See Configuring network interfaces. |
69 |
UDP |
TFTP for backups, restoration, and firmware updates. See commands such as |
80 |
HTTP |
Sending network settings and recording signals to cameras. See Configuring cameras. |
123 |
UDP |
NTP clock time synchronization. By default, FortiRecorder synchronizes its time with NTP servers at Fortinet. See Configuring the system time. |
443 |
HTTPS |
|
514 |
UDP |
Syslog for external logging. See Configuring log settings. |
554, 8554 |
TCP/UDP |
Controlling video recording (RTSP). See Viewing live video. |
5353 |
UDP |
mDNS, UPnP, and ONVIF queries for discovery of cameras and Chromecast. Multicast to 224.0.0.251. See Discovering cameras in remote networks. |
Incoming traffic
These are the default listening port numbers and protocols on FortiRecorder.
Port Number |
Protocol |
Purpose |
---|---|---|
N/A |
ICMP |
Responses to |
N/A |
ARP |
MAC address resolution responses |
21 |
TCP |
FTP for receiving motion detection video clips from cameras. See Configuring notification triggers Currently, this port number is not configurable. |
22 |
TCP |
SSH administrative CLI access. See also Access: SSH. |
23 |
TCP |
Telnet administrative CLI access. See also Access: TELNET. |
80 |
TCP |
HTTP administrative GUI access. See also Access: HTTP. |
443 |
TCP |
HTTPS administrative GUI access. Only occurs if the destination address is a network interface's IP address. See also Access: HTTPS. |
5000-14999 |
UDP |
Receiving video from cameras (RTP). See also Access: RTSP. |
554 |
TCP |
Live video feeds (RTP) in the HTTP/HTTPS administrative GUI. See Viewing live video. |
3010 |
TCP
|
Camera-based notifications. See Configuring notification triggers. Currently, this port number is not configurable. |
3011 |
||
8550 |
TCP |
Tunnel with FortiCentral to use the cameras, store face recognition data, and more. See also Access: FRC-Central and the FortiCentral User Guide. |