Skip to main content
TomWhi
TomWhi
New Member
August 21, 2018
Solved

Internet Access for FortiManager

  • August 21, 2018
  • 1 reply
  • 11937 views

Hi,

 

Does my FortiManager need access to the internet to gain any access to features that are dynamically populated like the updated OS's?

 

If so please can someone let me know what services it needs to have access to so that I can poke the right holes through our FW? Any documentation that goes alongside it would be helpful for approval too. 

 

Cheers 

    Best answer by Toshi_Esumi

    This is probably what you're looking for.

    http://help.fortinet.com/...ls-54/FortiManager.htm

    1 reply

    Toshi_Esumi
    SuperUser
    Toshi_EsumiAnswer
    SuperUser
    August 21, 2018

    This is probably what you're looking for.

    http://help.fortinet.com/...ls-54/FortiManager.htm

    TomWhi
    TomWhiAuthor
    New Member
    August 22, 2018

    Yup! Right at the bottom of that post. Thank you! 

     

    Note that, while a proxy is configured, FortiManager uses the following URLs to access the FortiGuard Distribution Network (FDN) for the following updates:

    [ul]fds1.fortinet.com - FortiGate AV/IPS package downloadsguard.fortinet.net - Webfilter/AntiSpam DB and AVfileQuery DB downloadsforticlient.fortinet.com - FortiClient signature package downloadsfgd1.fortigate.com:8888 - FortiClient Webfilter queries to FortiGuard[/ul]
    aagrafi
    aagrafi
    New Member
    August 22, 2018

    FortiManager needs to have access in Fortiguard for two purposes:

    - For its own operation

    - For the devices it manages (if you have set the FMG to act as Fortiguard server for these devices)

    At either case, the FMG needs to have Internet access for ports 443, 53 and/or 8888. Port 443 is used for antivirus and IPS signatures updates and ports 53 or 8888 are used for web filtering and antispam.

    Terms & ConditionsAccessibility statement