Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
mercenaires
New Contributor

Open port on a Fortigate FGT60B

Hi all,

 

I try to open port 993 and 587 for emails (outlook) but I'm unable to make it working.

I had port in the service in TCP and in the policy rules internal traffic --> wan1 I add both services with NAT.

This policy rules already has another ports, this ports are open and work well.

 

Thanks a lot for your help.

Fabien

3 REPLIES 3
rwpatterson
Valued Contributor III

Welcome to the forums.

 

You will have to create a custom service. Call it 'Outlook'. In it, you will need two lines:

Source port range:1-65535

Destination port range: 993

Service: TCP

 

Source port range:1-65535

Destination port range: 587

Service: TCP

 

Use this as the service in your policy and you should be good.

Bob - self proclaimed posting junkie!
See my Fortigate related scripts at: http://fortigate.camerabob.com

Bob - self proclaimed posting junkie!See my Fortigate related scripts at: http://fortigate.camerabob.com
Dave_Hall

Just want to comment that it is so common to setup services in firewall rules/VIPs and forget to set the source port range to 1-65535, though I think by default the fgt sets the source to that range - you may still want to verify that.

NSE4/FMG-VM64/FortiAnalyzer-VM/6.0 (FWF30E/FW92D/FGT200D/FGT101E/FGT81E)/ FAP220B/221C

NSE4/FMG-VM64/FortiAnalyzer-VM/6.0 (FWF30E/FW92D/FGT200D/FGT101E/FGT81E)/ FAP220B/221C
mercenaires

Hi,

 

thanks a lot you save my day!!

 

Regards

Labels
Top Kudoed Authors