Go to the table of contents Go to the previous page Go to the next page
Forcepoint DLP ports
Deployment and Installation Center | Forcepoint DLP
 
The most robust and effective implementation of Forcepoint DLP depends on certain ports being open to support the mechanics of the software. The ports for Forcepoint DLP components are 17500–17515 by default. These ports must be left open for all Forcepoint DLP software and hardware configurations.
If you have a security policy in place, exclude these ports from that policy so that Forcepoint DLP can operate properly. If you do not, the policy you have in place may disrupt Forcepoint DLP functionality.
The tables in the rest of this section list the inbound and outbound ports required for each Forcepoint DLP component.
You can lock down or "harden" your security systems once these ports are open.
 
Important 
Human interface device (administrator client)
 
Forcepoint DLP Endpoint client
 
Forcepoint DLP Endpoint server
 
 
Crawler agent (discovery and fingerprinting)
 
Forcepoint management server
 
Supplemental Forcepoint DLP server
 
Web Content Gateway
 
Forcepoint Email Security
The following ports are used on the appliance for outbound connections to Forcepoint DLP.
Protector
 
ICAP client
 
Mobile agent
 
Forcepoint Behavioral Analytics
 
Analytics engine
The following ports must be kept open on the server running the analytics engine:

Go to the table of contents Go to the previous page Go to the next page
Copyright 2019 Forcepoint. All rights reserved.