Skip to main content
Ban
Ban
New Member
September 20, 2016
Question

Fortinet Distribution Servers - IP Addresses or FQDN

  • September 20, 2016
  • 1 reply
  • 4438 views

All documentation for a number of Fortinet devices states that the "Fortinet Distribution Servers" are accessed to download things like FortiGuard engine and definition updates.

 

I need to permit traffic from my Fortinet device (FortiMail) to the Fortinet Distribution Servers, through my perimeter firewall.

 

I can see that TCP443 and UDP53 needs to be permitted but where to?  There is no reference to a specific destination.

 

What is the IP address or FQDN of these Fortinet Distribution Servers?

    1 reply

    emnoc
    emnoc
    New Member
    September 20, 2016

    Try to contact support for the correct  FQDN but here's a method for getting the  list 

     

    http://socpuppet.blogspot.com/2015/10/howto-determine-if-your-fortinet.html

     

     

    Also since these servers requires-peer certifications, try to set a fwpolicy with no ssl inspection.

     

    Terms & ConditionsAccessibility statement