This article describes the FQDN and IP addresses that are required by FortiDeceptor.

FortiDeceptor V5.X. V6.X.

1. If it does not allow full Internet access from FortiDeceptor to the Internet, consider allowing the below FQDN and IP addresses from the FortiDeceptor to the Internet:

• DNS IP that is configured in FortiDeceptor.
• FDN:

globalupdate.fortinet.net (TCP port 443 and TCP port 8890)
fds1.fortinet.com (TCP port 443 and TCP port 8890)
173.243.138.67 (TCP port 443)
208.184.237.68 (TCP port 443)
149.5.232.66 (TCP port 443)
208.184.237.67 (TCP port 443)
173.243.138.69 (TCP port 443)
12.34.97.16 (TCP port 443)
173.243.138.66 (TCP port 443)
208.184.237.66 (TCP port 443)

• FortiGuard Web filtering:

securewf.fortiguard.net (TCP 443 and UDP port 53 and UDP port 8888)
update.fortiguard.net (TCP port 443 and TCP port 8890)
service.fortiguard.net (UDP port 8888 and UDP port 53)
173.243.138.210 (TCP port 443)
140.174.22.68 (TCP port 443)
12.34.97.18 (TCP port 443)
149.5.232.18 (TCP port 443)
210.7.96.18 (TCP port 443)

• FortiDeceptor Deception Image Service:

fdcvm.fortinet.net (TCP port 443)

• Microsoft Activation for Deception OS WIN7 and WIN10:

*.microsoft.com (TCP port 80 or TCP port 443)

• For the license:

support.fortinet.com (TCP port 443)

• For FortiDeceptor Daas:
  

daas.forticloud.com (TCP port 8443)

• For FortiDeceptor CM (local communication):

FortiDeceptor management IP interface (TCP port 8443)