Description
The port number information to connect to different Slots in FortiGate-7000 series is given below.
Using these numbers, SSH, HTTPS connections can be made to the required slot on the FortiGate-7000 series.
These unique port numbers also helps in connecting to secondary firewall using the same management IP in case of HA.
Scope
For FortiGate-7000 series.
Solution
Case 1: When Firewalls are in HA cluster.
It is required to know the Chassis-ID of the firewall in the cluster. The chassis-ID can be seen from CLI:
Firewall 1.
1) Logging into the GUI or CLI using the MGMT interface IP address using default ports for SSH(22) or HTTPS(443) will always connect to the FortiGate-7000E management board (called slot 1 or FIM on the CLI) of the Master Firewall in HA.
2) The management IP address to connect to the Master or Slave is always same since the MGMT interface IP address will be in sync.
3) These special port numbers always remains same even though the administrative port number to manage the firewall is changed.
Connecting to Chassis 1.
Connect to the GUI or CLI of individual FIM/FPM using the MGMT interface IP address with a special port number.
For example, if the MGMT interface IP address is 10.1.1.1, connect to the GUI of the FPM in Slot-3 using the system management IP address followed by a special port number, for example: https://10.1.1.1:44303 or SSH to 10.1.1.1 on port 2203.
To connect to the individual FIM or FPM in Chassis 1, use below special port numbers:
Connect to the GUI or CLI of individual FIM/FPM using the MGMT interface IP address with a special port number.
For example, if the MGMT interface IP address is 10.1.1.1, connect to the GUI of the FPM in Slot-3 using the system management IP address followed by a special port number, for example: https://10.1.1.1:44323 or SSH to 10.1.1.1 on port 2223.
To connect to the individual FIM or FPM in Chassis 2, use below special port numbers:
Connect to the GUI or CLI of FIM/FPM using the MGMT interface IP address with a special port number.
For example, if the MGMT interface IP address is 10.1.1.1, connect to the GUI of the FPM in Slot-3 using the system management IP address followed by a special port number, for example: https://10.1.1.1:44303 or SSH to 10.1.1.1 on port 2203.
To connect to the individual FIM/FPMs, use below special port numbers:
The port number information to connect to different Slots in FortiGate-7000 series is given below.
Using these numbers, SSH, HTTPS connections can be made to the required slot on the FortiGate-7000 series.
These unique port numbers also helps in connecting to secondary firewall using the same management IP in case of HA.
Scope
For FortiGate-7000 series.
Solution
Case 1: When Firewalls are in HA cluster.
It is required to know the Chassis-ID of the firewall in the cluster. The chassis-ID can be seen from CLI:
Firewall 1.
Fortigate-7K1# config globalFirewall 2.
Fortigate-7k1(global) # show full system ha | grep chassis-id
set chassis-id 1
Fortigate-7K2# config globalNote.
Fortigate-7k2(global) # show full system ha | grep chassis-id
set chassis-id 2
1) Logging into the GUI or CLI using the MGMT interface IP address using default ports for SSH(22) or HTTPS(443) will always connect to the FortiGate-7000E management board (called slot 1 or FIM on the CLI) of the Master Firewall in HA.
2) The management IP address to connect to the Master or Slave is always same since the MGMT interface IP address will be in sync.
3) These special port numbers always remains same even though the administrative port number to manage the firewall is changed.
Connecting to Chassis 1.
Connect to the GUI or CLI of individual FIM/FPM using the MGMT interface IP address with a special port number.
For example, if the MGMT interface IP address is 10.1.1.1, connect to the GUI of the FPM in Slot-3 using the system management IP address followed by a special port number, for example: https://10.1.1.1:44303 or SSH to 10.1.1.1 on port 2203.
To connect to the individual FIM or FPM in Chassis 1, use below special port numbers:
Connecting to Chassis 2.
Connect to the GUI or CLI of individual FIM/FPM using the MGMT interface IP address with a special port number.
For example, if the MGMT interface IP address is 10.1.1.1, connect to the GUI of the FPM in Slot-3 using the system management IP address followed by a special port number, for example: https://10.1.1.1:44323 or SSH to 10.1.1.1 on port 2223.
To connect to the individual FIM or FPM in Chassis 2, use below special port numbers:
Case 2: When Firewall is NOT in HA.
Connect to the GUI or CLI of FIM/FPM using the MGMT interface IP address with a special port number.
For example, if the MGMT interface IP address is 10.1.1.1, connect to the GUI of the FPM in Slot-3 using the system management IP address followed by a special port number, for example: https://10.1.1.1:44303 or SSH to 10.1.1.1 on port 2203.
To connect to the individual FIM/FPMs, use below special port numbers:
