Outgoing ports
Purpose |
Protocol/Port | |
---|---|---|
FortiAnalyzer | Syslog, OFTP, Registration, Quarantine, Log & Report | TCP/514 |
FortiAuthenticator | LDAP, PKI Authentication | TCP or UDP/389 |
RADIUS | UDP/1812 | |
FSSO | TCP/8000 | |
RADIUS Accounting | UDP/1813 | |
SCEP | TCP/80, TCP/443 | |
CRL Download | TCP/80 | |
External Captive Portal | TCP/443 | |
FortiProxy | HA Heartbeat | ETH Layer 0x8890, 0x8891, and 0x8893 |
HA Synchronization | TCP/703, UDP/703 | |
Unicast Heartbeat for Azure | UDP/730 | |
DNS for Azure | UDP/53 | |
WAN optimization tunnels | TCP/7810 | |
FortiGuard | AV/IPS Update | TCP/443, TCP/8890 |
Cloud App DB | TCP/9582 | |
FortiGuard Queries | UDP/53, UDP/8888, TCP/53, TCP/8888, TCP/443 (as part of Anycast servers) | |
SDNS queries for DNS Filter | UDP/53, TCP/853 (as part of Anycast servers) | |
Registration | TCP/80 | |
Alert Email, Virus Sample | TCP/25 | |
Management, Firmware, SMS, FTM, Licensing, Policy Override | TCP/443 | |
Central Management, Analysis | TCP/541 | |
FortiManager | IPv4 FGFM management | TCP/541 |
IPv6 FGFM management | TCP/542 | |
Log & Report | TCP or UDP/514 | |
FortiGuard Queries | UDP/53, UDP/8888, TCP/80, TCP/8888 | |
FortiSandbox | OFTP | TCP/514 |
Others | FSSO | TCP/8001 (by default; this port can be customized) |
While a proxy is configured, FortiProxy uses the following URLs to access the FortiGuard Distribution Network (FDN):
|