Message meets Alert condition File Block Detected: " A56489778.pdf" Protocol: " imaps" Source IP: 192.168.16.10 Destination IP: 81.81.81.81 Email Address From: " valid@tld.de" Email Address To: " recipient@bla.de" date=2014-03-11 time=20:36:25 devname=blob device_id=FGT80C3000000000 log_id=0262008962 type=virus subtype=scanerror pri=warning vd=" root" msg=" Encrypted archive." status=" blocked" service=" imaps" src=192.168.16.10 dst=81.81.81.81 sport=51429 src_port=51429 dport=993 dst_port=993 src_int=" dmz" dst_int=" wan1" policyid=30 identidx=0 serial=4358147 dir=N/A file=" A56489778.pdf" checksum=" N/A" quarskip=" No skip" virus=" N/A" dtype=" N/A" ref=" N/A" url=" N/A" carrier_ep=" N/A" profile=" scan_secalso" profiletype=" Antivirus_Profile" profilegroup=" N/A" user=" N/A" group=" N/A" agent=" N/A" from=" valid@tld.de" to=" recipient@bla.de"If haven' t heard back yet if that mail really was blocked but the message says so. Can anybody please help me understand which setting is causing this and whether mails are REALLY blocked?
Hi Ede, did you find any solution to get out of this problems?
FCNSP/WCSP
No, sorry I have no idea why but these log entries vanished over night...
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.