Question
What ports are used by FTK, Lab, Enterprise, FTK Plus, and FTK Central?
Answer
Product | Source Component | Destination Component | Destination Port |
All | Distributed Processing Manager | Case/Evidence/Job Storage | 445 |
All | Distributed Processing Engine | Case/Evidence/Job Storage | 445 |
All | Forensic Tools Service | Case/Evidence/Job Storage | 445 |
Enterprise FTK Central | Site Server | Network Share Endpoints | 445 |
Enterprise FTK Central | Site Server | On-Network Agents | 39991 |
Enterprise | Enterprise Examiner | On-Network Agents | 39991 |
Enterprise | Distributed Processing Manager / Distributed Processing Engine | On-Network Agents | 39994 |
Enterprise FTK Plus FTK Central | End Users | Forensic Tools Service | 44431 |
FTK Plus FTK Central | FTK Central Service | Collab | 19876 |
All | Distributed Processing Engine | Distributed Processing Manager | 34096 |
All | Forensic Tools Service | Distributed Processing Manager | 34096 |
All | Distributed Processing Manager | Distributed Processing Engine | 34097, 34099 |
Enterprise FTK Central | Site Server | PostgreSQL | 54323 |
Enterprise FTK Central | FTK Central Service | Root Site Server | 543211 |
Enterprise FTK Central | Child Site Server | Parent Site Server | 545485 |
Enterprise FTK Central | Parent Site Server | Child Site Server | 545485 |
Enterprise FTK Central | Agents | Site Server | 545451 |
All | Distributed Processing Manager | MSSQL | 1433, MSDTC2 |
All | Distributed Processing Engine | MSSQL | 1433, MSDTC2 |
All | Forensic Tools Service | MSSQL | 1433, MSDTC2 |
Enterprise FTK Central | Forensic Tools Service | Cloud Connectors | Various |
1 User-configurable.
2 You may need to manually set exceptions for ports 135 (DTC) and 1024-65535 (DCOM) if allowing MSDTC by application doesn't work. You can restrict the firewall rules to just the involved server's IPs.
3 PostgreSQL should be installed locally on each Site Server, so firewall rules are typically not necessary
4 Necessary for Disk Preview jobs
5. Site Server in 8.0 uses port 54548 for SS to SS. Public Port is 54545, Heartbeat Port is 54555 and Client Port is 54321
Important: Outbound ports should not be restricted in any way.