Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
yeowkm99
Contributor

Connect remote FGT to Analyzer

i am trying to connect the FG50F in my remote office to the FAZ300G in my data centre.

Currently the remote office is connecte via IPsec site-to-site VPN.

what are the ports i need to open up in order for the FG50F to send logs to the FG300G ?

12 REPLIES 12
waqar11
New Contributor

Hi there,

The ports you need to open up in order for the FG50F to send logs to the FG300G are:

  • TCP 514 - This is the default port for syslog.
  • UDP 514 - This is an alternative port for syslog.
  • TCP 1025 - This is the port for the FortiAnalyzer Management Interface.

You will need to open these ports on both the FG50F and the FG300G.

Here are the steps on how to open ports on the FG50F:

  1. Go to Policy & Objects > Objects > Network > Interfaces.
  2. Select the interface that you want to open the ports on.
  3. Click on the Edit button.
  4. Click on the Advanced tab.
  5. In the Port Forwarding section, enter the ports that you want to open.
  6. Click on the Save button.

Here are the steps on how to open ports on the FG300G:

  1. Go to Policy & Objects > Objects > Network > Interfaces.
  2. Select the interface that you want to open the ports on.
  3. Click on the Edit button.
  4. Click on the Advanced tab.
  5. In the Port Forwarding section, enter the ports that you want to open.
  6. Click on the Save button.

Once you have opened the ports, you should be able to send logs from the FG50F to the FG300G.

yeowkm99

is there options to create policy and objects in the Analyzer 300G ?

 

Here are the steps on how to open ports on the FG300G:

  1. Go to Policy & Objects > Objects > Network > Interfaces.
  2. Select the interface that you want to open the ports on.
  3. Click on the Edit button.
  4. Click on the Advanced tab.
  5. In the Port Forwarding section, enter the ports that you want to open.
  6. Click on the Save button.
mgoswami
Staff
Staff

Hi,

 

Here are the ports you need to open:

  1. FortiGuard Log Forwarding (FGT Log Forwarding):

    • TCP: 514
    • UDP: 514
  2. Fortinet's FortiAnalyzer Protocol (FAP):

    • TCP: 541
    • UDP: 541

Ensure that the above ports are open in both directions, i.e., from FortiGate FG50F to FortiAnalyzer FAZ300G and vice versa.

 

BR,

Manosh

Top Kudoed Authors