Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
R_F
Contributor

FortiMail inspection local maiboxes

Dear Fellas,

 

Is it possible in FortiMail (GW Mode) to scan emails in the same domain?

Example:

user1@example.com will send an email to user2@example.com FortiMail should perform any inspection.

We are noticing that some of our local users were able to receive spam emails from local users. Or any best approach how to resolve a such issue?

 

Thank you

5 REPLIES 5
sw2090
Honored Contributor

When FortiMail acts as gw it will per default not see internal traffic on your  mailserver. Mails within one domain is internal traffic on mailserver.

If you want that to go through FortiMail you will have to force your MTA on Mailserver to relay through fortimail and the fortimail to hand back internal mail.

-- 

"It is a mistake to think you can solve any major problems just with potatoes." - Douglas Adams

-- "It is a mistake to think you can solve any major problems just with potatoes." - Douglas Adams
R_F

Dear SW2090,

 

Yes, I am totally aware of this flow "When FortiMail acts as gw it will per default not see internal traffic on your  mailserver. Mails within one domain is internal traffic on mailserver."

 

May you please elaborate further  or share sample screenshots on how to achive this one. "If you want that to go through FortiMail you will have to force your MTA on Mailserver to relay through fortimail and the fortimail to hand back internal mail."

 

sw2090
Honored Contributor

the relaying config depends on whixh MTA you use. So I cannot give generic instructions here. The FortiMail as gw is configured to ship the mail back anyways when it acts as gw...

-- 

"It is a mistake to think you can solve any major problems just with potatoes." - Douglas Adams

-- "It is a mistake to think you can solve any major problems just with potatoes." - Douglas Adams
srajeswaran
Staff
Staff

Can you check the history logs for one such email and confirm if it is hitting any rules/policies or getting permitted by default rule?

Regards,

Suraj

- Have you found a solution? Then give your helper a "Kudos" and mark the solution.

R_F

@srajeswaran

pretty much sure in this type of example no traffic will hit Fortimail. user1@example.com will send an email to user2@example.com 

 

I am exploring if FortiMail could extend its functions to inspect local to local email traffic. 

Labels
Top Kudoed Authors