Appendix A: Port numbers
 
Appendix A: Port numbers
Communications between the FortiADC appliance, clients, servers, and FortiGuard Distribution Network (FDN) require that any routers and firewalls between them permit specific protocols and port numbers.
The following tables list the default port assignments used by FortiADC. Many may differ if you have changed them. For example, to change the port numbers used by the web UI and CLI, see “Global web UI & CLI settings”.
Table 13: Default ports used by FortiADC for outgoing traffic
Port Number
IP Protocol Number/ Service
Purpose
N/A
ARP
HA failover of network interfaces. See “HA heartbeat & synchronization”.
N/A
ICMP
execute ping and execute traceroute
25
TCP
SMTP for alert email. See “Alert email”.
53
UDP
DNS queries. See “Configuring DNS settings”.
69
UDP
TFTP for backups, restoration, and firmware updates. See commands such as execute backup or execute restore.
80
TCP
Server health checks. See “Monitoring your servers’ responsiveness”.
123
UDP
NTP synchronization. See “Setting the system time & date”.
162
UDP
SNMP traps. See “SNMP traps & queries”.
443
TCP
FortiGuard polling.
514
UDP
Syslog. See “Logging to a FortiAnalyzer or Syslog server”.
6055
UDP
HA heartbeat. Layer 2 multicast. See “HA heartbeat & synchronization”.
6056
UDP
HA configuration synchronization. Layer 2 multicast. See “HA heartbeat & synchronization”.
Table 14: Default ports used by FortiADC for incoming traffic (listening)
Port Number
IP Protocol Number/ Service
Purpose
N/A
ICMP
ping and traceroute responses. See “Configuring the physical network interfaces”.
22
TCP
SSH administrative CLI access. See “Configuring the physical network interfaces”.
23
TCP
Telnet administrative CLI access. See “Configuring the physical network interfaces”.
53
UDP
DNS queries from clients for global server load balancing and inbound link load balancing. See “Link load balancing for inbound traffic” and “Load balancing among globally distributed servers”.
80
TCP
Predefined HTTP service. Only occurs if the service is used by a virtual server. See “Defining your network services”.
161
UDP
SNMP queries. See “Configuring an SNMP community” and “Configuring the physical network interfaces”.
443
TCP
HTTPS administrative web UI access. Only occurs if the destination address is a network interface’s IP address. See “Configuring the physical network interfaces” and “How to use the web UI”.
Predefined HTTPS service. Only occurs if the service is used by a virtual server, and if the destination address is a virtual server. See “Defining your network services”.
6055
UDP
HA heartbeat. Layer 2 multicast. See “HA heartbeat & synchronization”.
6056
UDP
HA configuration synchronization. Layer 2 multicast. See “HA heartbeat & synchronization”.