Hi all,
I currently ran into a incoming email tagged spam by Fortiage with the log message part showing only "email is reported as spam by ASE". Are there any ways that I can force more detailed logs? I need logs showing exactly why the emailed was tagged spam, such as banned words or patterns or blacked IPs. I'm using OS version 7.4. The below is my current log.
date=2024-04-25
time=18:58:20
devname=xxxx
devid=xxxx
eventtime=xxxx
tz="+0800"
logid=xxxx
type="utm"
subtype="emailfilter"
eventtype="spam"
level="notice"
vd="root"
policyid=xxxx
policytype="policy"
sessionid=xxxx
srcip=xxxx
srcport=xxxx
srccountry=xxxx
srcintf=xxxx
srcintfrole="undefined"
srcuuid=xxxx
dstip=xxxx
dstport=xxxx
dstcountry=xxxx
dstintf=xxxx
dstintfrole=xxxx
dstuuid=xxxx
proto=xxxx
service="SMTPS"
profile="default"
action="tagged"
from=xxxx
to=xxxx
sender=xxxx
recipient=xxxx
direction="outgoing"
msg="email is reported as spam by ASE"
subject=xxxx
size="470133"
cc=xxxx
attachment="no"
Thank you in advance
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
For more details you can check the sender IP/domain directly in FortiGuard. In case you need further details you can write and ask via the Contact form.
Thank you!
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1696 | |
1091 | |
752 | |
446 | |
228 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.