Technical Note: Internet Service Database - List of services, IP ranges, ports and protocols

irodriguez_FTNT · ‎05-30-2017

Description

This article explains how to list all the services of the Internet Service Database with their respective IP ranges, protocols and ports.

Solution

To identify the services contained in the database, run the following command:

# diagnose internet-service id

This will provide the ID number and name of the service.

Use ‘grep’ to find the ID of a specific service. For example, to identify the ID of FortiGuard, run

# diagnose internet-service id | grep FortiGuard
ID: 1245324 name: "Fortinet-FortiGuard"

Once the service has been identified, the ID can be used to find the protocol and ports:

# diagnose internet-service id 1245324

Version: 00004.00067
Timestamp: 201705291030
Number of Entries: 2
Internet Service: 1245324(Fortinet-FortiGuard)
    Protocol: 6 Port: 443 8889 8890     <---- Ports and protocols being used by the service
        IP range(34):
        6.45.33.64-6.45.33.64
        61.204.170.252-61.204.170.252
        [….]
    Protocol: 17 Port: 53 8888
        IP range(34):
       80.85.69.54-80.85.69.54
       96.45.32.80-96.45.32.81
        [….]

If the IP ranges are not shown, add the Internet Service to a firewall policy rule or static route.