Predefined Protocols in Forefront TMG
Sometimes you are being asked to open up a specified port from your TMG firewall and there is a lot of predefined protocols but there isn’t an easy way to see what port that’s belongs to the given protocol/service name.
Here you find a list of every predefined protocol in Forefront TMG:
Just search for your port number in this list:
AOL Instant Messenger American Online Instant Messenger protocol
Category User-defined, Common, Mail
TCP: 5190, Outbound
——————————————————————————–
Archie Archie protocol
Category All
UDP: 1525, Send-Receive
——————————————————————————–
BranchCache – Advertise
Category All
TCP: 443, Outbound
——————————————————————————–
BranchCache – Retrieval
Category All
TCP: 80, Outbound
——————————————————————————–
Chargen (TCP) Character generator protocol (TCP)
Category All
TCP: 19, Outbound
——————————————————————————–
Chargen (UDP) Character generator protocol (UDP)
Category All
UDP: 19, Send-Receive
——————————————————————————–
Daytime (TCP) Daytime protocol (TCP)
Category All
TCP: 13, Outbound
——————————————————————————–
Daytime (UDP) Daytime protocol (UDP)
Category All
UDP: 13, Send-Receive
——————————————————————————–
DHCP (reply)
Category Common
UDP: 68, Send
——————————————————————————–
DHCP (request)
Category Common
UDP: 67, Send
——————————————————————————–
DHCPv6 DHCPv6 Protocol
Category Common, Messaging
TCP: 546, Outbound
——————————————————————————–
Discard (TCP) Discard protocol (TCP)
Category All
TCP: 9, Outbound
——————————————————————————–
Discard (UDP) Discard protocol (UDP)
Category All
UDP: 9, Send-Receive
——————————————————————————–
DNS Domain Name System Protocol
Category User-defined, Common
TCP: 53, Outbound
UDP: 53, Send-Receive
——————————————————————————–
DNS Server Domain Name System protocol – Server. An inbound protocol used for server publishing.
DNS Filter, Included, Array scope
Category Common
TCP: 53, Inbound
UDP: 53, Receive-Send
Application Filter DNS Filter, Included, Array scope
——————————————————————————–
Echo (TCP) Echo protocol (TCP)
Category All
TCP: 7, Outbound
——————————————————————————–
Echo (UDP) Echo protocol (UDP)
Category All
UDP: 7, Send-Receive
——————————————————————————–
Exchange RPC Server Protocol used for publishing Exchange server for RPC access from the External network.
RPC Filter, Included, Array scope
Category Infrastructure
TCP: 135, Inbound
Application Filter RPC Filter, Included, Array scope
——————————————————————————–
Finger Finger protocol
Category All
TCP: 79, Outbound
——————————————————————————–
Forefront Protection Manager WS Web Services protocol between Forefront Protection Manager and Forefront TMG
Category Common
TCP: 1961, Outbound
——————————————————————————–
Forefront TMG Client (Notifications) Protocol used by Forefront TMG to send notifications to Forefront TMG Client.
Category All
UDP: 1745, Send
——————————————————————————–
Forefront TMG Client (TCP) Protocol used by Forefront TMG Client to communicate with Forefront TMG. Also known as the Forefront TMG Client control channel.
Category All
TCP: 1745, Outbound
——————————————————————————–
FTP File Transfer Protocol
FTP Access Filter, Included, Array scope
Category User-defined, Common, Mail, Remote, Web
TCP: 21, Outbound
——————————————————————————–
Gopher Gopher protocol
Category All
TCP: 70, Outbound
——————————————————————————–
H.323 Protocol H.323 protocol – Ports and channels: Q.931/H.245/RTP/RTCP/T.120
H.323 Filter, Included, Array scope
Category User-defined, Common, Mail
TCP: 1720, Outbound
Application Filter H.323 Filter, Included, Array scope
——————————————————————————–
HTTP Hyper Text Transfer Protocol (HTTP)
Web Proxy Filter, Included, Array scope
Category User-defined, Messaging, IPSec-VPN, Web
TCP: 80, Outbound
Application Filter Web Proxy Filter, Included, Array scope
——————————————————————————–
HTTP Proxy Protocol used by HTTP clients (such as Internet Explorer) to send HTTP requests to an outbound HTTP proxy server.
Category All
TCP: 8080, Outbound
——————————————————————————–
HTTPS Secure Hyper Text Transfer Protocol
Category Infrastructure, Mail, Remote, Web
TCP: 443, Outbound
——————————————————————————–
HTTPS Server Secure Hyper Text Transfer Protocol – Server. An inbound protocol used for server publishing.
Category Infrastructure, Mail, Remote, Web
TCP: 443, Inbound
——————————————————————————–
ICA Citrix Intelligent Console Architecture protocol
Category User-defined, Mail, Messaging
TCP: 1494, Outbound
Secondary Connections
UDP: 1604, Send-Receive
——————————————————————————–
ICA session w/ Session Reliability enabled Citrix Intelligent Console Architecture session with Session Reliability enabled protocol
Category User-defined, Mail, Messaging
TCP: 2598, Outbound
Secondary Connections
UDP: 1604, Send-Receive
——————————————————————————–
ICMP Information Request
Category Common
ICMP Type 15, Code 0, Send-Receive
——————————————————————————–
ICMP Timestamp
Category Common
ICMP Type 13, Code 0, Send-Receive
——————————————————————————–
ICMPv6 Echo
Category Common, Messaging
TCP: 0, Send-Receive
——————————————————————————–
ICMPv6 Listener Done
Category Common, Messaging
TCP: 0, Send-Receive
——————————————————————————–
ICMPv6 Listener Query
Category Common, Messaging
TCP: 0, Send-Receive
——————————————————————————–
ICMPv6 Listener Report
Category Common, Messaging
TCP: 0, Send-Receive
——————————————————————————–
ICMPv6 Listener Report v2
Category Common, Messaging
TCP: 0, Send-Receive
——————————————————————————–
ICMPv6 Multicast Router Advertisement
Category Common, Messaging
TCP: 0, Send-Receive
——————————————————————————–
ICMPv6 Multicast Router Solicitation
Category Common, Messaging
TCP: 0, Send-Receive
——————————————————————————–
ICMPv6 Multicast Router Termination
Category Common, Messaging
TCP: 0, Send-Receive
——————————————————————————–
ICMPv6 Neighbor Advertisement
Category Common, Messaging
TCP: 0, Send-Receive
——————————————————————————–
ICMPv6 Neighbor Solicitation
Category Common, Messaging
TCP: 0, Send-Receive
——————————————————————————–
ICMPv6 Router Advertisement
Category Common, Messaging
TCP: 0, Send-Receive
——————————————————————————–
ICMPv6 Router Solicitation
Category Common, Messaging
TCP: 0, Send-Receive
——————————————————————————–
ICQ ICQ instant messenger protocol (legacy)
Category User-defined, Common, Mail
UDP: 4000, Send
Secondary Connections
UDP: 0, Inbound
TCP: 0, Inbound
TCP: 1025 –> 5000, Inbound
TCP: 1025 –> 5000, Outbound
——————————————————————————–
ICQ 2000 ICQ 2000 protocol
Category User-defined, Common, Mail
TCP: 5190, Outbound
——————————————————————————–
Ident Ident protocol
Category All
TCP: 113, Outbound
——————————————————————————–
IKE Client
Category Infrastructure, Messaging, IPSec-VPN
UDP: 500, Send-Receive
——————————————————————————–
IKE Server Internet Key Exchange protocol – Server. An inbound protocol used for server publishing.
Category Infrastructure, Messaging, IPSec-VPN
UDP: 500, Receive-Send
——————————————————————————–
IMAP4 Interactive Mail Access
Category Infrastructure
TCP: 143, Outbound
——————————————————————————–
IMAP4 Server Protocol (IMAP) – Server. An inbound protocol used for server publishing.
Category Infrastructure
TCP: 143, Inbound
——————————————————————————–
IMAPS Secure Interactive Mail Access Protocol
Category Infrastructure
TCP: 993, Outbound
——————————————————————————–
IMAPS Server Secure Interactive Mail Access Protocol (IMAP) – Server. An inbound protocol used for server publishing.
Category Mail
TCP: 993, Inbound
——————————————————————————–
IPsec ESP
Category Infrastructure, Messaging, IPSec-VPN
TCP: 0, Send-Receive
——————————————————————————–
IPsec ESP Server IPsec ESP Protocol — Inbound server protocol used in virtual private network (VPN) site-to-site system policy rules to enable ESP traffic to the TOKE_FAMILY_PRODUCT_NAME computer. This protocol is not used for server publishing.
Category Infrastructure, Messaging, IPSec-VPN
TCP: 0, Receive-Send
——————————————————————————–
IPsec NAT-T Client
Category Infrastructure, Messaging, IPSec-VPN
UDP: 4500, Send-Receive
——————————————————————————–
IPsec NAT-T Server IPsec NAT-T protocol – Server. An inbound protocol used for server publishing.
Category Infrastructure, Messaging, IPSec-VPN
UDP: 4500, Receive-Send
——————————————————————————–
IPv6 Over IPv4 Tunnel IPv6 Over IPv4 Tunnel Protocol
Category All
TCP: 0, Send-Receive
——————————————————————————–
IRC Internet Relay Chat
Category User-defined, Common, Mail
TCP: 6667, Outbound
——————————————————————————–
ISA Server Web Management Protocol used for Web access to the Forefront TMG computer for remote management.
Category User-defined, Mail, Messaging
TCP: 2175, Outbound
——————————————————————————–
Kerberos Password V5
Category User-defined, Mail, IPSec-VPN, Auth
TCP: 464, Outbound
——————————————————————————–
Kerberos-Adm (TCP) Kerberos administration (TCP)
Category User-defined, Mail, IPSec-VPN, Auth
TCP: 749, Outbound
——————————————————————————–
Kerberos-Adm (UDP) Kerberos administration (UDP)
Category User-defined, Mail, IPSec-VPN, Auth
UDP: 749, Send-Receive
——————————————————————————–
Kerberos-IV Kerberos IV Authentication protocol
Category User-defined, Mail, IPSec-VPN, Auth
UDP: 750, Send-Receive
——————————————————————————–
Kerberos-Sec (TCP) Kerberos V authentication protocol
Category User-defined, Mail, IPSec-VPN, Auth
TCP: 88, Outbound
——————————————————————————–
Kerberos-Sec (UDP) Kerberos V authentication protocol (UDP)
Category User-defined, Mail, IPSec-VPN, Auth
UDP: 88, Send-Receive
——————————————————————————–
L2TP Client
Category Infrastructure, Messaging, IPSec-VPN
UDP: 1701, Send-Receive
——————————————————————————–
L2TP Server Layer 2 Tunneling Protocol – Server. An inbound protocol used for server publishing.
Category Infrastructure, Messaging, IPSec-VPN
UDP: 1701, Receive-Send
——————————————————————————–
LDAP Lightweight Directory Access Protocol (LDAP)
Category User-defined, Mail
TCP: 389, Outbound
——————————————————————————–
LDAP (UDP) Lightweight Directory Access Protocol UDP (LDAP-UDP)
Category Infrastructure
UDP: 389, Send-Receive
——————————————————————————–
LDAP GC (Global Catalog) Lightweight Directory Access Protocol global catalog protocol
Category All
TCP: 3268, Outbound
——————————————————————————–
LDAP(EdgeSync) Lightweight Directory Access Protocol used by Exchange Server EdgeSync process
Category User-defined, Mail
TCP: 50389, Outbound
——————————————————————————–
LDAPS Secure Lightweight Directory Access Protocol
Category Infrastructure
TCP: 636, Outbound
——————————————————————————–
LDAPS GC (Global Catalog) Secure Lightweight Directory Access Protocol global catalog protocol
Category All
TCP: 3269, Outbound
——————————————————————————–
LDAPS(EdgeSync) Secure Lightweight Directory Access Protocol used by Exchange Server EdgeSync process
Category User-defined, Mail
TCP: 50636, Outbound
——————————————————————————–
Link-local multicast name resolution
Category Common
UDP: 5355, Send-Receive
——————————————————————————–
Live Messenger Live Messenger protocol
Category Infrastructure, Mail
TCP: 1863, Outbound
——————————————————————————–
Microsoft CIFS (TCP)
Category All
TCP: 445, Outbound
——————————————————————————–
Microsoft CIFS (UDP)
Category All
UDP: 445, Send-Receive
——————————————————————————–
Microsoft Operations Manager Agent
Category Infrastructure
TCP: 1270, Outbound
UDP: 1270, Send-Receive
——————————————————————————–
Microsoft SQL (TCP)
Category All
TCP: 1433, Outbound
——————————————————————————–
Microsoft SQL (UDP)
Category All
UDP: 1434, Send-Receive
——————————————————————————–
Microsoft SQL Server Microsoft SQL Server protocol
Category All
TCP: 1433, Inbound
——————————————————————————–
MMS Microsoft Media Streaming protocol – Client
MMS Filter, Included, Array scope
Category Common, Messaging, Remote
UDP: 1755, Send
TCP: 1755, Outbound
Application Filter MMS Filter, Included, Array scope
——————————————————————————–
MMS Server Microsoft Media Server protocol – Server. An inbound protocol used for server publishing
MMS Filter, Included, Array scope
Category Common, Messaging, Remote
UDP: 1755, Inbound
TCP: 1755, Inbound
Application Filter MMS Filter, Included, Array scope
——————————————————————————–
MS Firewall Control Microsoft Forefront TMG Secure Control Protocol
Category All
TCP: 3847, Outbound
——————————————————————————–
MS Firewall Secure Storage Server Protocol used to publish the configuration storage servers over SSL.
Category All
TCP: 2172, Inbound
——————————————————————————–
MS Firewall Storage Protocol used to access the configuration storage servers.
Category All
TCP: 2171, Outbound
TCP: 2172, Outbound
TCP: 2174, Outbound
——————————————————————————–
MS Firewall Storage Replication Protocol used to replicate data between configuration storage servers.
Category All
TCP: 2173, Outbound
——————————————————————————–
MS Firewall Storage Server Protocol used to publish the configuration storage servers.
Category All
TCP: 2171, Inbound
TCP: 2172, Inbound
——————————————————————————–
MSMQ Microsoft Message Queuing protocol.
Category Common
TCP: 1801, Outbound
——————————————————————————–
MSN MSN Internet Access protocol
Category All
TCP: 569, Outbound
——————————————————————————–
Net2Phone Net2Phone protocol
Category User-defined, Common, Mail
UDP: 6801, Send
Secondary Connections
UDP: 0, Inbound
TCP: 0, Inbound
TCP: 3000 –> 4000, Inbound
UDP: 1025 –> 5000, Send
TCP: 7800 –> 7900, Outbound
UDP: 2000 –> 2100, Send-Receive
——————————————————————————–
Net2Phone registration Net2Phone registration protocol
Category User-defined, Common, Mail
TCP: 6500, Outbound
——————————————————————————–
NetBios Datagram NetBIOS Datagram protocol
Category Common
UDP: 138, Send
——————————————————————————–
NetBios Name Service NetBIOS Name Service protocol
Category Common
UDP: 137, Send-Receive
——————————————————————————–
NetBios Session NetBIOS Session protocol
Category Common
TCP: 139, Outbound
——————————————————————————–
NNTP Network News Transfer Protocol (NNTP)
Category Infrastructure
TCP: 119, Outbound
——————————————————————————–
NNTP Server Network News Transfer Protocol – Server. An inbound protocol used for server publishing.
Category Infrastructure
TCP: 119, Inbound
——————————————————————————–
NNTPS Secure Network News Transfer Protocol
Category Infrastructure
TCP: 563, Outbound
——————————————————————————–
NNTPS Server Secure Network News Transfer Protocol – Server. An inbound protocol used for server publishing.
Category Infrastructure
TCP: 563, Inbound
——————————————————————————–
NTP (UDP) Network Time Protocol (UDP)
Category Common
UDP: 123, Send-Receive
Secondary Connections
UDP: 123, Inbound
——————————————————————————–
PING
Category User-defined, Common
ICMP Type 8, Code 0, Send-Receive
——————————————————————————–
PNM Progressive Networks streaming media protocol
PNM Filter, Included, Array scope
Category Common, Messaging, Remote
TCP: 7070, Outbound
Application Filter PNM Filter, Included, Array scope
——————————————————————————–
PNM Server Progressive Networks streaming media protocol – Server. An inbound protocol used for server publishing
PNM Filter, Included, Array scope
Category Common, Messaging, Remote
TCP: 7070, Inbound
Application Filter PNM Filter, Included, Array scope
——————————————————————————–
POP2 Post Office Protocol v.2
POP Intrusion Detection Filter, Included, Array scope
Category All
TCP: 109, Outbound
Application Filter POP Intrusion Detection Filter, Included, Array scope
——————————————————————————–
POP3 Post Office Protocol v.3
Category Mail
TCP: 110, Outbound
——————————————————————————–
POP3 Server Post Office Protocol v.3 – Server. An inbound protocol used for server publishing.
POP Intrusion Detection Filter, Included, Array scope
Category Mail
TCP: 110, Inbound
Application Filter POP Intrusion Detection Filter, Included, Array scope
——————————————————————————–
POP3S Secure Post Office Protocol v.3
Category Infrastructure
TCP: 995, Outbound
——————————————————————————–
POP3S Server Secure Post Office Protocol v.3 – Server. An inbound protocol used for server publishing.
Category Mail
TCP: 995, Inbound
——————————————————————————–
PPTP Enables PPTP tunneling through Forefront TMG
PPTP Filter, Included, Array scope
Category Infrastructure, Messaging, IPSec-VPN
TCP: 1723, Outbound
Application Filter PPTP Filter, Included, Array scope
——————————————————————————–
PPTP Server Point-to-Point Tunneling Protocol – Server. An inbound protocol used for server publishing
PPTP Filter, Included, Array scope
Category Infrastructure, Messaging, IPSec-VPN
TCP: 1723, Inbound
Application Filter PPTP Filter, Included, Array scope
——————————————————————————–
Quote (TCP) Quote of the day protocol (TCP)
Category All
TCP: 17, Outbound
——————————————————————————–
Quote (UDP) Quote of the day protocol (UDP)
Category All
UDP: 17, Send-Receive
——————————————————————————–
RADIUS Remote Authentication Dial-In User Service protocol
Category All
UDP: 1812, Send-Receive
——————————————————————————–
RADIUS Accounting Remote Authentication Dial-In User Service accounting protocol
Category User-defined, Mail, IPSec-VPN, Auth
UDP: 1813, Send-Receive
——————————————————————————–
RDP (Terminal Services) Remote Desktop Protocol (Terminal Services)
Category User-defined, Mail, Messaging
TCP: 3389, Outbound
——————————————————————————–
RDP (Terminal Services) Server Remote Desktop Protocol (Terminal Services) – Server
Category User-defined, Mail, Messaging
TCP: 3389, Inbound
——————————————————————————–
RIP Routing Information Protocol
Category Common
UDP: 520, Send-Receive
——————————————————————————–
Rlogin Remote login protocol
Category User-defined, Mail, Messaging
TCP: 513, Outbound
——————————————————————————–
RPC (all interfaces)
RPC Filter, Included, Array scope
Category All
TCP: 135, Outbound
Application Filter RPC Filter, Included, Array scope
——————————————————————————–
RPC Server (all interfaces) Remote Procedure Call protocol – Server. An inbound protocol used for server publishing (All RPC interfaces).
RPC Filter, Included, Array scope
Category All
TCP: 135, Inbound
Application Filter RPC Filter, Included, Array scope
Additional Settings
Type 1
Comment Pseudo UUID, enables all RPC UUIDs
——————————————————————————–
RTP Real time protocol – used as VoIP and video media.
Category Media
——————————————————————————–
RTSP Real Time Streaming Protocol – Client
RTSP Filter, Included, Array scope
Category Common, Messaging, Remote
TCP: 554, Outbound
Application Filter RTSP Filter, Included, Array scope
——————————————————————————–
RTSP Server Real Time Streaming Protocol – Server. An inbound protocol used for server publishing
RTSP Filter, Included, Array scope
Category Common, Messaging, Remote
TCP: 554, Inbound
Application Filter RTSP Filter, Included, Array scope
——————————————————————————–
SecurID
Category User-defined, Mail, IPSec-VPN, Auth
UDP: 5500, Send-Receive
——————————————————————————–
SIP Session Initiation Protocol – An outbound protocol used for establishing VOIP and IM sessions.
SIP Access Filter, Included, Array scope
Category Media
UDP: 5060, Send-Receive
Application Filter SIP Access Filter, Included, Array scope
——————————————————————————–
SIP Server Session initiation server Protocol – An inbound protocol used for establishing VOIP and IM sessions.
SIP Access Filter, Included, Array scope
Category Media
UDP: 5060, Receive-Send
Application Filter SIP Access Filter, Included, Array scope
——————————————————————————–
SIPS SIP over TLS – An encrypted outbound protocol used for establishing VOIP and IM sessions.
Category Media
TCP: 5061, Outbound
——————————————————————————–
SIPS Server SIP over TLS server – An encrypted inbound protocol used for establishing VOIP and IM sessions.
Category Media
TCP: 5061, Inbound
——————————————————————————–
SMTP Simple Mail Transfer Protocol (SMTP)
Category Mail
TCP: 25, Outbound
——————————————————————————–
SMTP Server Simple Mail Transfer Protocol – Server. An inbound protocol used for server publishing.
SMTP Filter, Included, Array scope
Category Mail
TCP: 25, Inbound
Application Filter SMTP Filter, Included, Array scope
——————————————————————————–
SMTPS Secure Simple Mail Transfer Protocol
Category Infrastructure
TCP: 465, Outbound
——————————————————————————–
SMTPS Server Secure Simple Mail Transfer Protocol – Server. An inbound protocol used for server publishing.
Category Mail
TCP: 465, Inbound
——————————————————————————–
SNMP Simple Network Management Protocol
Category Common
UDP: 161, Send-Receive
——————————————————————————–
SNMP Trap Simple Network Management Protocol – Trap
Category Common
UDP: 162, Send-Receive
——————————————————————————–
SOCKS Protocol that allows client-server applications to use the services of a network firewall. SOCKS is defined in RFC 1928.
Category All
TCP: 1080, Outbound
——————————————————————————–
SSH Secure Shell protocol
Category User-defined, Mail, Messaging
TCP: 22, Outbound
——————————————————————————–
SSTP (Infrastructure) Protocol used for SSTP traffic between Forefront TMG and Windows SSTP infrastructure
Category All
TCP: 6601, Outbound
——————————————————————————–
System Center Operation Manager Agent Microsoft System Center Operation Manager 2007 Agent
Category Common
TCP: 5723, Outbound
——————————————————————————–
System Center Operation Manager Agent Installation Microsoft System Center Operation Manager 2007 Agent Installation
Category Common
TCP: 5724, Outbound
——————————————————————————–
System Center Operation Manager Agent Installation Server Microsoft System Center Operation Manager 2007 Agent Installation – Server. An inbound protocol used for server publishing.
Category Common
TCP: 5724, Inbound
——————————————————————————–
System Center Operation Manager Agent Server Microsoft System Center Operation Manager 2007 Agent – Server. An inbound protocol used for server publishing.
Category Common
TCP: 5723, Inbound
——————————————————————————–
Telnet Telnet protocol
Category Common, Mail, Messaging
TCP: 23, Outbound
——————————————————————————–
Telnet Server Telnet protocol – Server. An inbound protocol used for server publishing.
Category Common, Mail, Messaging
TCP: 23, Inbound
——————————————————————————–
Teredo Teredo Protocol
Category All
UDP: 3544, Send-Receive
——————————————————————————–
TFTP Trivial File Transfer Protocol
TFTP Access Filter, Included, Array scope
Category All
UDP: 69, Send
Application Filter TFTP Access Filter, Included, Array scope
——————————————————————————–
Time (TCP) Time protocol (TCP)
Category All
TCP: 37, Outbound
——————————————————————————–
Time (UDP) Time protocol (UDP)
Category All
UDP: 37, Send-Receive
——————————————————————————–
WCF Windows Communication Foundation protocol.
Category Common
TCP: 9988, Outbound
——————————————————————————–
WhoIs Nickname/Whois protocol
Category All
TCP: 43, Outbound