Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
dbhavsar
Staff
Staff

Created on ‎12-15-2024 01:35 PM Edited on ‎02-11-2025 10:55 PM By Community Manager

Article Id 364586

Technical Tip: Changing SSLVPN listening port

Description

 

This article describes how the SSL VPN listening port can be changed and necessary relevant changes need to be made.

 

Scope

 

FortiGate.

 

Solution

 

The following steps can be followed to change the SSLVPN listening port via GUI/CLI.

For changing via GUI navigate to VPN -> SSL-VPN Settings -> change the port to listen to:


port.jpg

 

The following commands can be used for changing it via CLI:

 

config vpn ssl settings

     set port <port-number>  <- Enter an integer value from <1> to <65535> (default = <10443>).

end


Relevant changes must be made on FortiClient. See Connecting from FortiClient VPN client, enable the 'customize port' in the VPN settings, and use the port that is configured on FortiGate. 

 

From v7.2, the default SSL VPN listening port is changed to 10443 

 

Note:

If the warning comes up stating it is conflicting with another port that is being used: Technical Tip: SSL VPN port conflict warning to fix it.

919
0 Kudos
Suggest New Article
Article Feedback
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.