Emails from addresses listed in the system safe list being quarantined due to dictionary
Is there any way to allow senders in the system safe list to bypass the content filters so as not to be quarantined. The quarantines result from words in a dictionary that is listed in the content profile. I do see a system safe tag in the logs for emails sent from addresses in the system safe list that aren't quarantined, so I know my email list is recognized. Is there a description or chart somewhere that describes and details the flow chart for all the filters and lists that an incoming email is subject to? In my case, I am dealing with emails that are sent directly to the Fortimail appliance from within the organization, as there may be a difference in how the unit handles those emails versus emails that come in via the internet.
BYPASS (now called SAFE) does not bypass Content Profiles:
"SAFE: Relay or proxy and deliver the email, only if the recipient belongs to a protected domain or the sender is authenticated. All antispam profile processing will be skipped; but antivirus, content, greylisting and other scans will still occur."
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.