Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
Not applicable

Fortimail 100 & Exchange Outgoing SMTP

I' ve got a Fortimail 100 on evaluation for the next week, have it running in gateway mode behind a firewall (Fortigate 300A) and is scanning externally send incoming email no problems on Exchange 2003. The problem I have is that it isnt scanning internally sent outbound mail, the admin guide says configure the email client' s outgoing smtp server to be the Fortimail but I can' t see how Exchange lets you do this. Any replies would be greatly appreciated. Cheers Dan
1 Solution
Not applicable

UK is right... Just create a new access rule (Mail Settings --> Access) and set the following values: - Sender Pattern: * - leave the " Regular expression" box unchecked - Recipient Pattern: * - leave the " Regular expression" box unchecked - Sender IP/Netmask: ip adress of the Exchange server /32 - leave the " Regular expression" box unchecked - set Action to " RELAY" Change the SMTP Connector on the exchange to the Fortimail and than just test the whole thing. That should be all.

View solution in original post

6 REPLIES 6
UkWizard
New Contributor

you need to configure exchange to not deliver directly, but forward to that ' smart' host. under connectors, edit the SMTP one, in the general tab, tick the " forward all mail through this comnector" and put in the fortimail ip. but make sure fortimail is configured to allow the outbound as well. else it will all start bouncing back.
UK Based Technical Consultant FCSE v2.5 FCSE v2.8 FCNSP v3 Specialising in Systems, Apps, SAN Storage and Networks, with over 25 Yrs IT experience.
UK Based Technical Consultant FCSE v2.5 FCSE v2.8 FCNSP v3 Specialising in Systems, Apps, SAN Storage and Networks, with over 25 Yrs IT experience.
Not applicable

Hi UKWizard, like daniel I also want to pass mails from an exchange server to the fortimail which then is sending the mails to the next smtp server. I' ve changed the exchange smtp connector to use the fortimail but the mails will be rejected from the fortimail. What settings needs to be made to the fortimail to let the unit pass through? Regards Tom
UkWizard
New Contributor

I am a bit rusty on the fortimails, having not installed many. But you need to create an outbound policy, just like with the inbound. and add your exchange server IP somewhere to allow it to relay. Sorry its a bit vague, but its been a while. the manual should explain all of this, it can be found here; http://docs.forticare.com/fmail.html Anything else i would need to dig my notes out :)
UK Based Technical Consultant FCSE v2.5 FCSE v2.8 FCNSP v3 Specialising in Systems, Apps, SAN Storage and Networks, with over 25 Yrs IT experience.
UK Based Technical Consultant FCSE v2.5 FCSE v2.8 FCNSP v3 Specialising in Systems, Apps, SAN Storage and Networks, with over 25 Yrs IT experience.
Not applicable

Thanks for the info UkWizard, I' ve applied that setting this morning and now when sending mail out of the Exchange server to an external mail server I' m getting - Your message did not reach some or all of the intended recipients. Subject: Sent: 7/11/2008 9:03 AM The following recipient(s) could not be reached: daniel.coyle@hotmail.co.uk on 7/11/2008 9:03 AM You do not have permission to send to this recipient. For assistance, contact your system administrator. <ex1.Weston-Test.co.uk #5.7.1 smtp;550 5.7.1 <daniel.coyle@hotmail.co.uk>... Relaying denied> I didnt have an SMTP connector set up so have created one and defined the Fortimail as the smarthost, have also defined the fortimail as a relay server and smarthost in the smtp v server properties. I can now see mail sent internally to external addresses on the fortimail logs....any advice would be greatly appreciated! Thanks Dan
UkWizard
New Contributor

Last time i installed one, it was under; MAIL SERVER -> ACCESS Then adding a relay permission from the mailserver IP. It must be in the manual though. I have a fortimail in the office in a box, but i dont have time to get it out to check it out exactly, sorry.
UK Based Technical Consultant FCSE v2.5 FCSE v2.8 FCNSP v3 Specialising in Systems, Apps, SAN Storage and Networks, with over 25 Yrs IT experience.
UK Based Technical Consultant FCSE v2.5 FCSE v2.8 FCNSP v3 Specialising in Systems, Apps, SAN Storage and Networks, with over 25 Yrs IT experience.
Not applicable

UK is right... Just create a new access rule (Mail Settings --> Access) and set the following values: - Sender Pattern: * - leave the " Regular expression" box unchecked - Recipient Pattern: * - leave the " Regular expression" box unchecked - Sender IP/Netmask: ip adress of the Exchange server /32 - leave the " Regular expression" box unchecked - set Action to " RELAY" Change the SMTP Connector on the exchange to the Fortimail and than just test the whole thing. That should be all.
Announcements

Select Forum Responses to become Knowledge Articles!

Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.

Labels
Top Kudoed Authors