Skip to main content
CAD
CAD
New Member
October 26, 2016
Question

Deny email with specific extens(.ace)

  • October 26, 2016
  • 2 replies
  • 5153 views

Hello,

i have FG200D , running firmware 5.2.8

 

I am looking for a way to block all incoming emails that have attachments with extension (.ace)

 

Thanks

 

    2 replies

    SCSIraidGURU
    SCSIraidGURU
    New Member
    December 14, 2016

    Profile - Content, you can add it. 

    Johan_de_Koning
    Johan_de_Koning
    New Member
    May 2, 2017

    I think you should preferably block extensions on your Mail Exchanger appliance, why? for logging and archiving what is blocked.

    If you still want to do it on Fortigate, you need to go to Security Profiles -> Data Leak Preventions and make a new profile with a SMTP block of filename extension and put that filter on the policy for inbound and/or outbound (what is preferable). 

    I never tested this and like i said earlyer, why do this on firewall level, do it on mail exchanger level.

    Luiz_Alberto_Camilo
    Luiz_Alberto_Camilo
    Explorer II
    May 2, 2017

    Use this Kb => http://kb.fortinet.com/kb/documentLink.do?externalID=FD35108

    On the "Test_file_filter" list, change to "Filename pattern" and add "*.ace"

    Apply this DLP to the firewall rule that inspects your Exchange traffic on port 25 SMTP. 

    That should be enough. 

    Terms & ConditionsAccessibility statement