Skip to main content
Fuss93
Fuss93
New Member
March 26, 2021
Question

PORT 7450 and 20080 is closed

  • March 26, 2021
  • 2 replies
  • 10358 views

Good morning all,

I'm having trouble opening port 7450 and another port,

There are some that open that work fine but for ports 7450 and 20080 it refuses to open them even though I did the same for the ports that are open. I don't understand why it doesn't work.

What I did was a virtual IP address with my public IP address on my targeted local IP address and opened port 7450 and created a rule for that as well.

But when I go on tools to check port 7450 it is close

Thank you for your answers.

    2 replies

    Toshi_Esumi
    SuperUser
    Toshi_Esumi
    SuperUser
    March 26, 2021

    Does the destination IP live on the FGT? If not, it might be closed on the server/destination side.

    Fuss93
    Fuss93Author
    New Member
    March 26, 2021

    Hi, I'm sorry but what is FGT because the acronym in English is hard because I'm French I'm sorryv

    Toshi_Esumi
    SuperUser
    Toshi_Esumi
    SuperUser
    March 26, 2021

    I meant FortiGate. Some just use FG.

    Fuss93
    Fuss93Author
    New Member
    March 31, 2021

    Hello,

    Thanks for your reply and here is the screenshot and yes I have used the online tools which help me see if my port is closed :)

    Toshi_Esumi
    SuperUser
    Toshi_Esumi
    SuperUser
    March 31, 2021

    Then, as long as the policy that has this vip applied is allowing TCP 7450 and 20080 toward the interface the phone system is connected, and as long as the system is listening to the ports, those ports should show up as open when you scan the wan2's IP.

    I would look at the phone system side. But to prove the FGT is passing the scan packets for those ports, you can sniff the inside port with 'host 192.168.0.178' while scan is happening. You should see them passing through.

    If you can't see them, now you have to run "flow debug" to see why the FGT is dropping. You can find "how to" by simply putting "fortigate flow debug" in an internet search. You need to set filter with those ports.

    If you're not comfortable doing it or don't have time, just open a ticket and get help from TAC.

    Fuss93
    Fuss93Author
    New Member
    April 1, 2021

    Hello,

     

    Thx for your reply but i try the fortigate flow debug I'm trying but it didn't work

    Terms & ConditionsAccessibility statement