Skip to main content
theFWdude
theFWdude
New Member
March 1, 2019
Question

FAZ - SMTP

  • March 1, 2019
  • 1 reply
  • 5190 views

All, I've got what I think is a pretty simple question... I have multiple interfaces configured on my FAZ, (MGMT, ROUTING, LOGGING); when configuring SMTP for notifications, does anyone know which interface the FAZ sends SMTP traffic on?  I need to know so that my mail admins can create an exception for the the FAZ Relay policy.

 

I tried testing (expecting failure) and in hopes the logs would tell me which interface was used for SMTP, but sadly no dice.

1 reply

chall_FTNT
Staff
chall_FTNT
Staff
March 1, 2019

The outgoing interface should just be determined by the routes on the FortiAnalyzer.  If the SMTP server is not directly connecting & there are no static routes added, then which interface has a default gateway.

theFWdude
theFWdudeAuthor
New Member
March 1, 2019

Thank you Chall.  The mail server is not directly connected, Port1 (routing) is the only interface with static route configured to my default gateway. I'm assuming smtp will be coming from Port1.

theFWdude
theFWdudeAuthor
New Member
March 1, 2019

Boom.. found it..  This gave me exactly what I was looking for and confirms what Chall said.

 

On the FAZ perform the following:

FortiFaz # diagnose sniffer packet any 'port 25' 1 10 interfaces=[any] filters=[port 25] <output omitted>

Terms & ConditionsAccessibility statement