FortiMail
FortiMail provides advanced, multi-layer protection against the full spectrum of email-borne threats
Not applicable
Article Id 197034
Article

Description

This article lists:

Traffic varies by enabled options and configured ports. Only default ports are listed.

This information is also available in diagram format at the end of this article, and as a downloadable PDF.

For similar information about other Fortinet products, see the related article "FortiMail Traffic Types and TCP/UDP Ports".

Components

  • FortiMail v3.0
  • Fortinet Distribution Network (FDN)

Originating Traffic

Functionality Port(s)
DNS lookup; RBL lookup UDP 53
FortiGuard Antispam rating lookup UDP 8889
NTP synchronization UDP 123
SNMP traps UDP 162
Syslog UDP 514
Remote email archive storage to FTP or SFTP server TCP 21 or TCP 22
SMTP email relay or delivery; SMTP authentication; SMTP recipient verification; SMTP alert email TCP 25
Dynamic DNS updates; HA web service monitoring TCP 80
POP3 authentication; HA POP3 service monitoring TCP 110
IMAP authentication; HA IMAP service monitoring TCP 143
LDAP authentication and queries TCP 389 or TCP 636
FortiGuard Antivirus or FortiGuard Antispam update; registration with, configuration backup to, and ... TCP 443
SMTPS email relay or delivery TCP 465
RADIUS authentication TCP 1812
HA heartbeat TCP 2000
HA configuration and data synchronization TCP 2001 and TCP 2002
Remote mail data storage on an NFS NAS TCP 2049

Receivable Traffic

(Listening Ports)

When operating in the default configuration, FortiMail units do not accept TCP or UDP connections on any port except the port1 and port2 network interfaces, which accept ICMP pings, HTTPS connections on TCP port 443, and SSH connections on TCP port 22.

Functionality Port(s)
SNMP poll UDP 161
FortiGuard Antivirus push update
The FDN sends notice that an update is available. Update downloads then occur on standard originating ports for updates. See originating port TCP 443.
UDP 9443
SSH administrative access to the CLI; remote management from a FortiManager unit TCP 22
Telnet administrative access to the CLI TCP 23
SMTP email relay; SMTP email delivery (server mode only); HA SMTP service monitoring TCP 25
HTTP administrative access to the web-based manager; HA web service monitoring; webmail and per-recipient quarantine access for email users TCP 80
POP3 email retrieval (server mode only); POP3 email quarantine retrieval (gateway mode and transparent mode only); HA POP3 service monitoring TCP 110
IMAP email retrieval (server mode only); HA IMAP service monitoring TCP 143
HTTPS administrative access to the web-based manager; remote management from a FortiManager unit; webmail and per-recipient quarantine access for email users TCP 443
SMTPS email relay; SMTPS email delivery (server mode only) TCP 465
IMAPS email retrieval (server mode only) TCP 993
POP3S email retrieval (server mode only) TCP 995
HA heartbeat TCP 2000
HA configuration and data synchronization TCP 2001 and TCP 2002

FDN Ports

FortiMail units and FortiClient installations communicate with the Fortinet Distribution Network (FDN) to receive updates or use services.

Functionality Port(s)
FortiGuard Antispam rating queries UDP 8889
FortiGuard Antivirus push update
The FDN sends notice that an update is available. Update downloads then occur on standard originating ports for updates. See originating port TCP 443.
UDP 9443
FortiGuard Antispam or FortiGuard Antivirus updates TCP 443

FortiMail v3.0 Port Numbers

Related Articles

FortiMail Traffic Types and TCP/UDP Ports