Hi Team, Can you help with the following issues:I want to restrict the number of mails received from incoming emails from Gmail, Yahoo, and Outlook domains. However, the session profile can only be applied to the IP Policy and not directly to domains. What solution is available?Is there a way to see the sender's IP address (not the sending server's IP) for an email on FortiMail?Thanks.

Hi @securitylearnercyber Session profile is something low level, that's why it is in IP policy. So I think the solution is to have the IP addresses of all gmail/yahoo sending MTAsA well configured MTA doesn't show you client's IP address in mail headers. As you may know the "Received" header is removed from the sent e-mails in the session profile. Only MTAs with security misconfiguration will show you client IP address.

securitylearnercyber

Explorer

Solved

Apply Session Profile on domains & Client IP

Forum|Forum|1 year ago
February 27, 2025
2 replies
708 views

Hi Team,

Can you help with the following issues:

I want to restrict the number of mails received from incoming emails from Gmail, Yahoo, and Outlook domains. However, the session profile can only be applied to the IP Policy and not directly to domains. What solution is available?
Is there a way to see the sender's IP address (not the sending server's IP) for an email on FortiMail?

Thanks.

FortiMail

Best answer by AEK

Hi @securitylearnercyber

Session profile is something low level, that's why it is in IP policy. So I think the solution is to have the IP addresses of all gmail/yahoo sending MTAs
A well configured MTA doesn't show you client's IP address in mail headers. As you may know the "Received" header is removed from the sent e-mails in the session profile. Only MTAs with security misconfiguration will show you client IP address.

AEKAnswer

SuperUser

Hi @securitylearnercyber

Session profile is something low level, that's why it is in IP policy. So I think the solution is to have the IP addresses of all gmail/yahoo sending MTAs
A well configured MTA doesn't show you client's IP address in mail headers. As you may know the "Received" header is removed from the sent e-mails in the session profile. Only MTAs with security misconfiguration will show you client IP address.

AEK

securitylearnercyberAuthor

Explorer

Hi @AEK

Noted. Thank you for your quick answer.

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded