Article
Description |
This article lists:
Traffic varies by enabled options and configured ports. Only default ports are listed.
This information is also available in diagram format at the end of this article, and as a downloadable PDF.
For similar information about other Fortinet products, see the related article "FortiMail Traffic Types and TCP/UDP Ports". |
Components |
- FortiMail v3.0
- Fortinet Distribution Network (FDN)
|
Originating Traffic |
Functionality |
Port(s) |
DNS lookup; RBL lookup |
UDP 53 |
FortiGuard Antispam rating lookup |
UDP 8889 |
NTP synchronization |
UDP 123 |
SNMP traps |
UDP 162 |
Syslog |
UDP 514 |
Remote email archive storage to FTP or SFTP server |
TCP 21 or TCP 22 |
SMTP email relay or delivery; SMTP authentication; SMTP recipient verification; SMTP alert email |
TCP 25 |
Dynamic DNS updates; HA web service monitoring |
TCP 80 |
POP3 authentication; HA POP3 service monitoring |
TCP 110 |
IMAP authentication; HA IMAP service monitoring |
TCP 143 |
LDAP authentication and queries |
TCP 389 or TCP 636 |
FortiGuard Antivirus or FortiGuard Antispam update; registration with, configuration backup to, and ... |
TCP 443 |
SMTPS email relay or delivery |
TCP 465 |
RADIUS authentication |
TCP 1812 |
HA heartbeat |
TCP 2000 |
HA configuration and data synchronization |
TCP 2001 and TCP 2002 |
Remote mail data storage on an NFS NAS |
TCP 2049 | |
Receivable Traffic
(Listening Ports) |
When operating in the default configuration, FortiMail units do not accept TCP or UDP connections on any port except the port1 and port2 network interfaces, which accept ICMP pings, HTTPS connections on TCP port 443, and SSH connections on TCP port 22.
Functionality |
Port(s) |
SNMP poll |
UDP 161 |
FortiGuard Antivirus push update The FDN sends notice that an update is available. Update downloads then occur on standard originating ports for updates. See originating port TCP 443. |
UDP 9443 |
SSH administrative access to the CLI; remote management from a FortiManager unit |
TCP 22 |
Telnet administrative access to the CLI |
TCP 23 |
SMTP email relay; SMTP email delivery (server mode only); HA SMTP service monitoring |
TCP 25 |
HTTP administrative access to the web-based manager; HA web service monitoring; webmail and per-recipient quarantine access for email users |
TCP 80 |
POP3 email retrieval (server mode only); POP3 email quarantine retrieval (gateway mode and transparent mode only); HA POP3 service monitoring |
TCP 110 |
IMAP email retrieval (server mode only); HA IMAP service monitoring |
TCP 143 |
HTTPS administrative access to the web-based manager; remote management from a FortiManager unit; webmail and per-recipient quarantine access for email users |
TCP 443 |
SMTPS email relay; SMTPS email delivery (server mode only) |
TCP 465 |
IMAPS email retrieval (server mode only) |
TCP 993 |
POP3S email retrieval (server mode only) |
TCP 995 |
HA heartbeat |
TCP 2000 |
HA configuration and data synchronization |
TCP 2001 and TCP 2002 | |
FDN Ports |
FortiMail units and FortiClient installations communicate with the Fortinet Distribution Network (FDN) to receive updates or use services.
Functionality |
Port(s) |
FortiGuard Antispam rating queries |
UDP 8889 |
FortiGuard Antivirus push update The FDN sends notice that an update is available. Update downloads then occur on standard originating ports for updates. See originating port TCP 443. |
UDP 9443 |
FortiGuard Antispam or FortiGuard Antivirus updates |
TCP 443 | |
Related Articles
FortiMail Traffic Types and TCP/UDP Ports