Fortinet Document Library

Version:


Table of Contents

FortiSandbox VM on AWS

3.1.0
Download PDF
Copy Link

Testing FortiSandbox

FortiSandbox dashboard and contract information

note icon

VM License is not needed for AWS FortiSandbox.

note icon

To get future firmware updates, contact Fortinet support site http://support.fortinet.com.

Submit on-demand test using remote VM

note icon

Starting with 2.5.1, FortiSandbox AWS supports a new remote VM type: WindowsCloudVM.

By default, 8 WindowsCloudVMs are enabled, and MacOS VM is disabled.

The max number of the remote VMs can be changed under Virtual Machine > VM Images page.

  1. Go to Scan Input > File On-Demand > Submit File. The Submit File dialog box will open.
  2. Click on Choose File and upload the fiddler2setup.exe file.
  3. Click Submit. You should receive a Clean rating after you send the file to FortiSandbox if the uploaded file is clean not malicious or suspicious.
  4. Click Browse and upload any file and click Submit.

  5. After uploading the file, you can view File On-Demand and select any file to check.

  6. Click the View File icon under the Action column.

  7. View the file details.

FortiSandbox VM and WindowsCloudVMs topology

FortiSandbox VM Port Usage

Type

Service

Port

FortiGate OFTP TCP/514
FortiClient File analysis TCP/514
Others

 

 

 

SSH CLI management TCP/22
Telnet CLI management TCP/23
Web admin TCP/80, TCP/443

OFTP communication with FortiGate and FortiMail

TCP/514

Third-party proxy server for ICAP servers (ICAP)

TCP/1344

Third-party proxy server for ICAP servers (ICAPS)

TCP/11344

FortiGuard

 

FortiGuard distribution servers

TCP/8890

FortiGuard web filtering servers

UDP/53, UDP/8888

FortiSandbox Community Cloud

Upload detected malware information

TCP/443, UDP/53

FortiSandbox WindowsCloudVMs

Serving WindowsVM on cloud for FSA-VM to perform sandboxing

TCP/443

Testing FortiSandbox

FortiSandbox dashboard and contract information

note icon

VM License is not needed for AWS FortiSandbox.

note icon

To get future firmware updates, contact Fortinet support site http://support.fortinet.com.

Submit on-demand test using remote VM

note icon

Starting with 2.5.1, FortiSandbox AWS supports a new remote VM type: WindowsCloudVM.

By default, 8 WindowsCloudVMs are enabled, and MacOS VM is disabled.

The max number of the remote VMs can be changed under Virtual Machine > VM Images page.

  1. Go to Scan Input > File On-Demand > Submit File. The Submit File dialog box will open.
  2. Click on Choose File and upload the fiddler2setup.exe file.
  3. Click Submit. You should receive a Clean rating after you send the file to FortiSandbox if the uploaded file is clean not malicious or suspicious.
  4. Click Browse and upload any file and click Submit.

  5. After uploading the file, you can view File On-Demand and select any file to check.

  6. Click the View File icon under the Action column.

  7. View the file details.

FortiSandbox VM and WindowsCloudVMs topology

FortiSandbox VM Port Usage

Type

Service

Port

FortiGate OFTP TCP/514
FortiClient File analysis TCP/514
Others

 

 

 

SSH CLI management TCP/22
Telnet CLI management TCP/23
Web admin TCP/80, TCP/443

OFTP communication with FortiGate and FortiMail

TCP/514

Third-party proxy server for ICAP servers (ICAP)

TCP/1344

Third-party proxy server for ICAP servers (ICAPS)

TCP/11344

FortiGuard

 

FortiGuard distribution servers

TCP/8890

FortiGuard web filtering servers

UDP/53, UDP/8888

FortiSandbox Community Cloud

Upload detected malware information

TCP/443, UDP/53

FortiSandbox WindowsCloudVMs

Serving WindowsVM on cloud for FSA-VM to perform sandboxing

TCP/443