Default port information
FortiSandbox treats Port1 or any other administrative port set through the CLI command set admin-port
as reserved for device management, and Port3 be reserved for the Windows VM to communicate with the outside network. The other ports are used for file input and communication among cluster nodes. In cluster mode, FortiSandbox uses TCP ports 2015 and 2018 for cluster internal communication. If the unit works as a Collector to receive threat information from other units, it uses TCP port 2443
The following tables list the default open ports for each FortiSandbox interface.
FortiSandbox 2000E, and 3000E default ports
All ports mentioned above are the same for both IPv4 and IPv6 protocols. |
You can dynamically change system firewall rules using the |
If port3 of the FortiSandbox is connected to an interface behind the FortiGate device, make sure that the egress WAN interface does not have the Scan Outgoing Connections to Botnet Sites feature enabled, nor any active security profiles as this might impact the detection rate. If this is not possible, we recommend connecting the FortiSandbox port3 to a different egress WAN port or directly to the Internet in front of the perimeter firewall. |
For more information on FortiSandbox 2000E, and FortiSandbox 3000E interfaces, see Interfaces.