Skip to main content
wahmed
wahmed
New Member
March 23, 2017
Question

Moving Symantec 8380 appliances to Fortimail 400E

  • March 23, 2017
  • 1 reply
  • 5895 views

Dears,

1) We are planning to move the smtp gateway for the printers from symantec to fortimail. The configuration has been replicated manually on the fortimail devices.

2) Testing has been done by configuring the Fortimail VIP as the SMTP Gateway on one of the printer.

3) We tired to send some email from the printers to the users and the test was successful.

4) After a while the printer was not able to reach the default SMTP Gateway (Fortimail VIP).

 

Kindly find the below traffic logs capture on the fortimail 400E during the connectivity issue.

 

10.12.50.98 (Printer IP) 10.15.65.30 (Fortimail VIP)

 

diagnose sniffer packet any "host 10.12.50.98 and host 10.14.65.30" 4 System Time: 2017-03-23 16:42:14 ASST (Uptime: 126d 16h 3m) interfaces=[any] filters=[host 10.12.50.98 and host 10.14.65.30] 3.778537 port2 in 10.12.50.98.1084 -> 10.14.65.30.25: syn 3251863053  3.778563 port2 out 10.14.65.30.25 -> 10.12.50.98.1084: syn 2061695963 ack 3251863054  3.782731 port2 in 10.12.50.98.1084 -> 10.14.65.30.25: ack 2061695964  3.797896 port2 out 10.14.65.30.25 -> 10.12.50.98.1084: psh 2061695964 ack 3251863054  4.000069 port2 out 10.14.65.30.25 -> 10.12.50.98.1084: psh 2061695964 ack 3251863054  4.408068 port2 out 10.14.65.30.25 -> 10.12.50.98.1084: psh 2061695964 ack 3251863054  4.408194 port2 in 10.12.50.98.1084 -> 10.14.65.30.25: rst 3251863054 ack 2061695976

 

Kindly need your support to resolve this issue.

 

Regards,

Wahmed

 

 

 

 

 

    1 reply

    emnoc
    emnoc
    New Member
    March 24, 2017

    That does not tell us much but where I would start would be  the logs on the FML. what do they show for the   printer? Do you have any ip rules? Do you have any smtp-auth  issues?

     

    Those are the areas I would cover 1st.

     

    Ken

    neonbit
    neonbit
    New Member
    March 25, 2017

    It looks like the printer is able to reach the FortiMail (acks are being received).

     

    Have you added the printer's IP address to the FortiMail to allow it to relay through the FortiMail? By default the FortiMail will block relay through it to non protected domains.

     

    To add the printer so it can relay through the FortiMail goto Policy > Access Control > Receiving. Click New and add 10.12.50.98/24 to the Sender IP/netmask. Select Relay for the action.

     

    Of course ensure that the the FortiGate is not NATing the IP from the printer. If it is then use the FortiGates IP address here.

     

    If it still doesn't work check the logs on the ForitMail (Monitor > Log > History) to see what's going on.

     

     

    wahmed
    wahmedAuthor
    New Member
    March 28, 2017

    Hi Neonbit,

     

    Thanks for the information.

     

    After we changed the administrative port for the Telnet from 25 to 23 the issue has been resolved and we were able to send the email from the printers.

     

     

     

    Terms & ConditionsAccessibility statement