hi,
nothing wrong, but you talked about lack of logs related with antispam activity.
Your spamfilter profile is the default one, so it needs enable spam-filtering service, logging and another cli based features.
I.e:
config spamfilter profile
edit "default"
set comment "Malware and phishing URL filtering."
set flow-based disable
set replacemsg-group ''
set spam-log enable
set spam-filtering enable // to enable features including fortiguard and non-licensed ones
set external disable
set options spambwl spamfsip spamfssubmit spamfschksum spamfsurl spamhelodns spamraddrdns spamfsphish // features like blacklists, helo, reverse-check, etc
config imap
set log enable //enable logging for this protocol
set action tag
set tag-type subject spaminfo
set tag-msg "Spam"
end
config pop3
set log enable
set action tag
set tag-type subject spaminfo
set tag-msg "Spam"
end
config smtp
set log enable
set action discard
set tag-type subject spaminfo
set tag-msg "Spam"
set hdrip disable // enable-disable possibility
set local-override disable
end
config mapi
set log enable
set action discard
end
config msn-hotmail
set log enable
end
config yahoo-mail
set log enable
end
config gmail
set log enable
end
set spam-bword-threshold 10
unset spam-bword-table
unset spam-bwl-table
unset spam-mheader-table
set spam-rbl-table 1
unset spam-iptrust-table
set spam-log-fortiguard-response enable
next
end
///
Also, if you set another tables to check for example RBLs, banned word or IP, etc, you need to enable it within profile.
example:
Using public relay-black-lists:
config spamfilter dnsbl
edit 1
set name "public rbls"
config entries
edit 1
set server "cbl.abuseat.org"
next
end
next
end
and you must enable "set spam-rbl-table 1" in your spamfilter profile
