Technical Tip: IP address and port used for FortiCloud

hlngan · ‎06-17-2019

Description

This article describes the IP address range and outgoing ports that need to be allowed for FortiCloud service connection.

Scope

FortiGate, FortiGate Cloud, FortiAP.

Solution

IP address range for FortiCloud and FortiAP Cloud:
Global and JP IP range (mix):

208.91.113.0/24, 173.243.132.0/24.

FortiGate Cloud IP address range:

173.243.132.0/24, 208.91.113.0/24 (Global).

148.230.40.0/24 (Japan).

154.52.10.0/24 (Germany).

154.45.6.0/24 (France).

FortiGate Cloud domain names:

logctrl1.fortinet.com (FortiGate Cloud logging/non-anycast).

globallogctrl.fortinet.net (FortiGate Cloud logging/anycast).

mgrctrl1.fortinet.com (FortiGate Cloud management/non-anycast).

globalmgrctrl.fortinet.net (FortiGate Cloud management/anycast).

FortiGate Cloud Sandbox IP address range:

173.243.139.0/24, 184.94.112.0/24, 154.52.26.0/24 (Global).

209.40.106.192/26, 209.66.107.0/24 (US).

210.7.96.0/24, 154.52.7.0/24 (Japan).

83.231.212.128/25, 154.45.1.0/24, 154.52.11.0/24 (EU).

Ports used for FortiGate:
FortiGate Cloud:

TCP/443, TCP/80 (Registration, Contract Validation, Log and Report, Syslog).

TCP/541 (Management).

TCP/514 (OFTP).

Ports used for FortiAP:
FortiAP Cloud:

TCP/443, TCP/80, TCP/514, TCP/541.
UDP/5246, UDP/5247.

You are leaving our website