tor.browser application

Question

Some users need to access Tor, so I created a rule and set the destination to the Fortinet Internet Service Database (ISDB) associated with Tor. We tested it and saw that they could access Tor pages via the web.

However, when the user tries to access the "tor.browser" application, it doesn't load. These users have internet access, but only through HTTP and HTTPS ports.

Wasn't the TOR.BROWSER application part of the Fortinet Internet Service Database (ISDB)?

Or is it necessary to add the ports used by TOR.BROWSER to the internet access policy? Do you know which ports that application uses, tor.browser?

david_pereira · Answer

The Fortinet Internet Service Database (ISDB) includes entries for various services and applications, including Tor. However, the ISDB entries for Tor may not cover all aspects of the Tor network, especially if the application uses non-standard ports or protocols that are not included in the default ISDB entry.

Ports Used by Tor:

The Tor browser typically uses the following ports:
TCP Port 9001: Used for Tor relays.
TCP Port 9030: Used for directory authorities.
TCP Port 443: Commonly used for HTTPS traffic, which Tor can also use to disguise its traffic.
TCP Port 80: Used for HTTP traffic, which can also be used by Tor.

Recommendations

Check ISDB Entries: Verify that the ISDB entry for Tor includes the necessary ports. If it does not, you may need to manually add these ports to your firewall policy.

Custom Port Configuration: If the ISDB does not cover all necessary ports, you can customize the ISDB entry or create a new firewall policy that explicitly allows the required ports for the Tor browser.

Testing and Monitoring: After making changes, test the configuration to ensure that the Tor browser can access the network as intended. Monitor the traffic to ensure compliance with your organization's policies.

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded