- Forums
- Knowledge Base
- Customer Service
- Internal Article Nominations
- FortiGate
- FortiAP
- FortiClient
- FortiADC
- FortiAnalyzer
- FortiBridge
- FortiAuthenticator
- FortiCache
- FortiCarrier
- FortiCASB
- FortiConnect
- FortiConverter
- FortiCNP
- FortiDAST
- FortiDDoS
- FortiDB
- FortiDNS
- FortiDeceptor
- FortiDevSec
- FortiDirector
- FortiExtender
- FortiEDR
- FortiGate Cloud
- FortiGuard
- FortiHypervisor
- FortiInsight
- FortiIsolator
- FortiMail
- FortiMonitor
- FortiManager
- FortiNAC
- FortiNAC-F
- FortiNDR (on-premise)
- FortiNDRCloud
- FortiPAM
- FortiPortal
- FortiProxy
- FortiRecorder
- FortiRecon
- FortiSandbox
- FortiScan
- FortiSASE
- FortiSIEM
- FortiSOAR
- FortiSwitch
- FortiTester
- FortiToken
- FortiVoice
- FortiWAN
- FortiWeb
- FortiWebCloud
- Wireless Controller
- RMA Information and Announcements
- FortiCloud Products
- ZTNA
- 4D Documents
- Customer Service
- Community Groups
- Blogs
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
- Fortinet Community
- Forums
- Support Forum
- Fortimail 100 & Exchange Outgoing SMTP
Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Mute
- Printer Friendly Page
Not applicable
Created on 07-10-2008 08:07 AM
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Fortimail 100 & Exchange Outgoing SMTP
I' ve got a Fortimail 100 on evaluation for the next week, have it running in gateway mode behind a firewall (Fortigate 300A) and is scanning externally send incoming email no problems on Exchange 2003.
The problem I have is that it isnt scanning internally sent outbound mail, the admin guide says configure the email client' s outgoing smtp server to be the Fortimail but I can' t see how Exchange lets you do this. Any replies would be greatly appreciated.
Cheers
Dan
Solved! Go to Solution.
1 Solution
Not applicable
Created on 07-15-2008 08:46 AM
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
UK is right...
Just create a new access rule (Mail Settings --> Access) and set the following values:
- Sender Pattern: *
- leave the " Regular expression" box unchecked
- Recipient Pattern: *
- leave the " Regular expression" box unchecked
- Sender IP/Netmask: ip adress of the Exchange server /32
- leave the " Regular expression" box unchecked
- set Action to " RELAY"
Change the SMTP Connector on the exchange to the Fortimail and than just test the whole thing. That should be all.
6 REPLIES 6
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
you need to configure exchange to not deliver directly, but forward to that ' smart' host.
under connectors, edit the SMTP one, in the general tab, tick the " forward all mail through this comnector" and put in the fortimail ip.
but make sure fortimail is configured to allow the outbound as well. else it will all start bouncing back.
UK Based Technical Consultant
FCSE v2.5
FCSE v2.8
FCNSP v3
Specialising in Systems, Apps, SAN Storage and Networks, with over 25 Yrs IT experience.
UK Based Technical Consultant FCSE v2.5 FCSE v2.8 FCNSP v3 Specialising
in Systems, Apps, SAN Storage and Networks, with over 25 Yrs IT
experience.
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hi UKWizard,
like daniel I also want to pass mails from an exchange server to the fortimail which then is sending the mails to the next smtp server. I' ve changed the exchange smtp connector to use the fortimail but the mails will be rejected from the fortimail. What settings needs to be made to the fortimail to let the unit pass through?
Regards
Tom
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
I am a bit rusty on the fortimails, having not installed many.
But you need to create an outbound policy, just like with the inbound.
and add your exchange server IP somewhere to allow it to relay.
Sorry its a bit vague, but its been a while. the manual should explain all of this, it can be found here;
http://docs.forticare.com/fmail.html
Anything else i would need to dig my notes out :)
UK Based Technical Consultant
FCSE v2.5
FCSE v2.8
FCNSP v3
Specialising in Systems, Apps, SAN Storage and Networks, with over 25 Yrs IT experience.
UK Based Technical Consultant FCSE v2.5 FCSE v2.8 FCNSP v3 Specialising
in Systems, Apps, SAN Storage and Networks, with over 25 Yrs IT
experience.
Not applicable
Created on 07-11-2008 01:09 AM
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Thanks for the info UkWizard, I' ve applied that setting this morning and now when sending mail out of the Exchange server to an external mail server I' m getting -
Your message did not reach some or all of the intended recipients.
Subject:
Sent: 7/11/2008 9:03 AM
The following recipient(s) could not be reached:
daniel.coyle@hotmail.co.uk on 7/11/2008 9:03 AM
You do not have permission to send to this recipient. For assistance, contact your system administrator.
<ex1.Weston-Test.co.uk #5.7.1 smtp;550 5.7.1 <daniel.coyle@hotmail.co.uk>... Relaying denied>
I didnt have an SMTP connector set up so have created one and defined the Fortimail as the smarthost, have also defined the fortimail as a relay server and smarthost in the smtp v server properties. I can now see mail sent internally to external addresses on the fortimail logs....any advice would be greatly appreciated!
Thanks
Dan
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Last time i installed one, it was under;
MAIL SERVER -> ACCESS
Then adding a relay permission from the mailserver IP.
It must be in the manual though. I have a fortimail in the office in a box, but i dont have time to get it out to check it out exactly, sorry.
UK Based Technical Consultant
FCSE v2.5
FCSE v2.8
FCNSP v3
Specialising in Systems, Apps, SAN Storage and Networks, with over 25 Yrs IT experience.
UK Based Technical Consultant FCSE v2.5 FCSE v2.8 FCNSP v3 Specialising
in Systems, Apps, SAN Storage and Networks, with over 25 Yrs IT
experience.
Not applicable
Created on 07-15-2008 08:46 AM
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
UK is right...
Just create a new access rule (Mail Settings --> Access) and set the following values:
- Sender Pattern: *
- leave the " Regular expression" box unchecked
- Recipient Pattern: *
- leave the " Regular expression" box unchecked
- Sender IP/Netmask: ip adress of the Exchange server /32
- leave the " Regular expression" box unchecked
- set Action to " RELAY"
Change the SMTP Connector on the exchange to the Fortimail and than just test the whole thing. That should be all.
Announcements
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
Related Posts
- Fortimail - No incoming mails(external) -... 515 Views
- Configuring FortiMail to Filter Incoming Emails... 299 Views
- Recipient Verification 364 Views
- How to enable FortiMail ARC Sealing 971 Views
- FORTIMAIL Gateway mode - Not seeing... 1532 Views
Labels
-
FortiGate
7,037 -
FortiClient
1,389 -
5.2
801 -
5.4
639 -
FortiManager
610 -
FortiAnalyzer
446 -
6.0
416 -
FortiAP
369 -
FortiSwitch
368 -
5.6
362 -
FortiClient EMS
286 -
FortiMail
272 -
6.2
251 -
FortiAuthenticator v5.5
234 -
5.0
196 -
FortiWeb
172 -
6.4
128 -
FortiNAC
123 -
FortiGuard
112 -
IPsec
104 -
SSL-VPN
94 -
FortiGateCloud
93 -
FortiSIEM
92 -
FortiCloud Products
88 -
FortiToken
76 -
Customer Service
71 -
Wireless Controller
64 -
4.0MR3
64 -
FortiProxy
48 -
FortiADC
45 -
Fortivoice
44 -
SD-WAN
43 -
FortiEDR
42 -
FortiDNS
37 -
FortiExtender
36 -
FortiGate v5.4
35 -
FortiSandbox
33 -
FortiAuthenticator
32 -
FortiSwitch v6.4
32 -
Firewall policy
32 -
VLAN
28 -
High Availability
28 -
FortiConnect
24 -
FortiWAN
23 -
ZTNA
21 -
DNS
21 -
FortiConverter
21 -
BGP
19 -
FortiGate v5.2
19 -
Certificate
19 -
SAML
18 -
FortiPortal
18 -
FortiSwitch v6.2
17 -
LDAP
17 -
VDOM
16 -
FortiMonitor
14 -
Authentication
14 -
FortiLink
14 -
Interface
14 -
FortiDDoS
14 -
Logging
14 -
FortiGate v5.0
13 -
Fortigate Cloud
13 -
Routing
13 -
FortiCASB
12 -
RADIUS
11 -
NAT
11 -
Web profile
11 -
SSL SSH inspection
10 -
Traffic shaping
10 -
Virtual IP
10 -
SSO
10 -
Application control
10 -
FortiRecorder
10 -
SSID
9 -
FortiWeb v5.0
9 -
FortiManager v5.0
9 -
4.0MR2
9 -
IP address management - IPAM
8 -
FortiBridge
8 -
WAN optimization
8 -
FortiGate v4.0 MR3
8 -
RMA Information and Announcements
7 -
FortiSOAR
7 -
FortiAnalyzer v5.0
7 -
SNMP
7 -
Web application firewall profile
7 -
Admin
7 -
4.0
7 -
Proxy policy
6 -
Security profile
6 -
Traffic shaping policy
6 -
Static route
6 -
FortiDirector
5 -
IPS signature
5 -
Packet capture
5 -
FortiAP profile
5 -
Automation
5 -
FortiManager v4.0
5 -
FortiDeceptor
4 -
Antivirus profile
4 -
DNS Filter
4 -
FortiTester
4 -
FortiCarrier
4 -
FortiCache
4 -
OSPF
4 -
Web rating
4 -
3.6
4 -
FortiScan
4 -
trunk
4 -
Port policy
4 -
System settings
3 -
Fortinet Engage Partner Program
3 -
FortiToken Cloud
3 -
Traffic shaping profile
3 -
FortiPAM
3 -
DoS policy
3 -
Email filter profile
3 -
FortiDB
3 -
Intrusion prevention
3 -
Protocol option
2 -
FortiInsight
2 -
NAC policy
2 -
Users
2 -
FortiAI
2 -
Application signature
2 -
VoIP profile
2 -
FortiHypervisor
2 -
Fabric connector
2 -
Netflow
2 -
Multicast routing
2 -
4.0MR1
1 -
TACACS
1 -
Subscription Renewal Policy
1 -
Replacement messages
1 -
FortiCWP
1 -
FortiNDR
1 -
Schedule
1 -
SDN connector
1 -
Authentication rule and scheme
1 -
FortiManager-VM
1 -
DLP sensor
1 -
Internet Service Database
1 -
Explicit proxy
1 -
Zone
1
Top Kudoed Authors
| User | Count |
|---|---|
| 1041 | |
| 862 | |
| 512 | |
| 441 | |
| 146 |
Broad. Integrated. Automated.
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Security Research
Company
News & Articles
Copyright 2024 Fortinet, Inc. All Rights Reserved.