By default, communication with file reputation and analysis services is routed through the
Management port (M1) on the appliance. If your appliance does not route data through the
management port, see

Routing Traffic to File Reputation and File Analysis Servers Through a Data

Interface, page 16-7

•

Communication with cloud services for file reputation and analysis occurs over IPv4.

•

The following firewall ports must be open:

Routing Traffic to File Reputation and File Analysis Servers Through a Data Interface

If the appliance is configured to restrict the management port to appliance management services only
(on the Network > Interfaces page), configure the appliance to route file reputation and analysis traffic
through the data port instead.

Add routes for data traffic on the Network > Routes page. For general requirements and instructions, see

Configuring TCP/IP Traffic Routes, page 3-18

Firewall
Ports Description

Protocol

In/Out

Hostname

Appliance
Interface

32137

Access to cloud services
for obtaining file
reputation.

TCP

Out

As configured in Security Services >
Anti-Malware and Reputation, Advanced
section, Cloud Server Pool parameter.

Management,
unless a static
route is
configured to
route this
traffic through
a data port.

443

Access to cloud services
for file analysis.

TCP

Out

As configured in Security Services >
Anti-Malware and Reputation, Advanced
section.