Technical Tip : Configuring DNSBL and ORDBL from FortiGate CLI
Description
Scope
Solution
DNSBL and ORDBL had been removed from the web based manager beginning with FortiOS v3.0. However, this antispam option is still available through the CLI.
Scope
Solution
To configure email filtering using DNS based Blackhole List (DNSBL) or Open Relay Database List (ORDBL) servers:
#config spamfilter dnsbl
#edit 1
#set name "dnsbl-table"
#config entries
#edit 0
#set action spam
#set status enable
#set server xbl-sbl.spamhaus.org
#next
#end
#end
To enable DSNBL and ORDBL filtering in the protection profile:
| #config spamfilter profile #edit "profile name" #config smtp #show (checks the SMTP inspection settings) #set options <paste normal inspection settings here> spamrbl #end #set spam-rbl-table 1 #end |
Note: The FortiGate unit uses the server domain name to connect to the DNSBL or ORDBL server so it must be able to look up this name on the DNS server.