FortiWLC (SD) Communication Ports
The tunnel between an AP and a controller uses the following ports for communication.
| Traffic | Port |
| AeroScout | UDP/6091 |
| Captive Portal (http redirection) | TCP/8080 |
| Captive Portal (https redirection) | TCP/8081 |
| NM Location Manager – Web UI | TCP/443 |
| NM Location Manager – Administrative Web UI (SSL) | TCP/8003 |
| NM Location Manager – AP Communication (Capture Packets subsystem) | UDP/9177and UDP/ 37008 |
| FTP | TCP/20 and TCP/21 |
| H.323v1 flow detection. | TCP/1720 |
| HTTP | TCP/8080 |
| HTTPS | TCP/443 |
| Fortinet L3 AP COMM | UDP/5000 |
| Licensing – for connections initiated from within the controller only for licensing purposes (e.g. wncagent -> merud) | TCP/32780 |
| Fortinet L3 AP Data | UDP/9393 |
| Fortinet L3 AP Discovery/Keepalive | UDP/9292 |
| NP1 advertisements / config | UDP/9980 |
| NTP | UDP/123 |
| RADIUS accounting | 1813 / 1646 |
| RADIUS auth | 1812 / 1645 |
| SIP | UDP/TCP 5060 |
| SSH | TCP/22 |
| SNMP | UDP/161 and 162 |
| Syslog | UDP/514 |
| TFTP | UDP/69 |
| UDP broadcast up to 5 upstream/downstream configurable | UPD/xxx |
| TACACS+ | TCP/49 |
FortiWLC (SD) Communication Ports
| Traffic | Port |
| Telnet | TCP/23 |
| Controller packet capture | UDP/9177 |
| WIPS | UDP/9178 |
| WireShark, OmniPeek, Newbury | UDP/9177 |
| SAM (AP and server) | EtherIP 97 |