Restrict incoming traffic to email archive server

Forum|Forum|1 year ago
October 18, 2024
2 replies
1020 views

We want to restrict incoming traffic from external to our email archive server.

We are currently using M365 email service.

currently we have on policy from WAN to LAN, all to archive server, services - https, ssh, ntp, dns, tcp8000.

how can we restrict the incoming traffic ?

FortiGate

rahul_p1

Staff

Hi,

Please create a firewall policy from wan to lan to deny traffic on the basis of ISDB or server IP:-

https://community.fortinet.com/t5/FortiGate/Technical-Tip-Creating-a-Deny-Policy-using-Internet-Service/ta-p/231076

yeowkm99Author

New Member

we want to allow only microsoft services but it seems if I use Internet service group, some services are for destination only and cannot be used as source

bkrishnan

Staff

Hi
The below doc might help you;
https://community.fortinet.com/t5/FortiGate/Technical-Tip-Firewall-does-not-block-incoming-WAN-to-LAN/ta-p/189641?externalID=FD36750

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded