FortiClient
FortiClient proactively defends against advanced attacks. Its tight integration with the Security Fabric enables policy-based automation to contain threats and control outbreaks. FortiClient is compatible with Fabric-Ready partners to further strengthen enterprises’ security posture.
ymasaki
Staff
Staff
Description
FortiClient sends web filter URL rating request to FortiGuard server on UDP/8888 by default.
Sometimes ISP blocks UDP/8888 and this port can be changed to UDP/53 via the XML config file.

This article describes how to change FortiGuard server port for URL rating.

Solution
To change the port via FortiClient XML config file directly.

1) Go to Settings -> System and select 'Backup' to export the XML config file.





2) Open the XML config file with text editor and add <url>fgd1.fortigate.com:53</url> in the location below.
<categories>
       <fortiguard>
       <enabled>1</enabled>
       <url>fgd1.fortigate.com:53</url>
       <rate_ip_addresses>1</rate_ip_addresses>
3) Restore the XML config file.




To change the port via FortiClient XML config file from EMS.

1) Go to Endpoint Profiles -> Your Profile (In this example, EMS version is v6.2.6.).

2) Enable Advanced setting and go to XML Configuration to add <url>fgd1.fortigate.com:53</url> in the location below.






Once the port is changed to UDP/53, FortiClient starts sending URL request to FortiGuard server on UDP/53.
In Wireshark, the packet entry appears like the following.





Related links:


Contributors