Created on 06-16-2008 08:30 AM
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
Bob - self proclaimed posting junkie!
See my Fortigate related scripts at: http://fortigate.camerabob.com
That regex will trigger with any word starting with cn, ru, or hk. Try this small change: /\w+\.\w+\.[cn|ru|hk]\b/i This will make sure there is a boundary between the domain and what follows... be it white space or punctuation.Thanks, I just want to make sure I have this right... what I am looking to filter is something.something.cn or ru or hk (ex. www.blah.hk or www.stupid.ru). My understanding was that \w+ is similar to * as a wildcard, and \. looks for a period. Just not clear on why my regex would look for a word starting with cn, ru or hk. I guess I have to find out what \b does so I can understand it better.
Bob - self proclaimed posting junkie!
See my Fortigate related scripts at: http://fortigate.camerabob.com
Bob - self proclaimed posting junkie!
See my Fortigate related scripts at: http://fortigate.camerabob.com
The most expensive and scarce resource for man is time, paradoxically, it' s infinite.
config spamfilter bword edit 1 set action spam set language western set pattern " /\\b0FF\\b/" set pattern-type regexp set score 20 set status enable set where subjectset pattern next endOr trying to match Pzifer in subject (if you can do such things). Another no-firewall related comment could be, should your mailserver accept email sent from the internet with sfin.ro domain? Do youhave roaming users sending email from outside corporate lan to users within corp lan with the same domain? If you can reject that at your mailserver smtp level, it' s done. FortiMail can do that for example. regards,
regards
/ Abel
well, under FTGate AS you' ve few tools to block spams with forged sender (exactly sender=recipient), so, you shoul rely on banned word filtering, i .e: config spamfilter bword edit 1 set action spam set language western set pattern " /\\b0FF\\b/" set pattern-type regexp set score 20 set status enable set where subjectset pattern next end Or trying to match Pzifer in subject (if you can do such things). Another no-firewall related comment could be, should your mailserver accept email sent from the internet with sfin.ro domain? Do youhave roaming users sending email from outside corporate lan to users within corp lan with the same domain? If you can reject that at your mailserver smtp level, it' s done. FortiMail can do that for example. regards,Hi mate, For my shame I did not your answer until now. I read your answer couple of times now, still I don' t get this line: set pattern " /\\b0FF\\b/" About the email config server, I am not in charge of it, so unfortunately there' s little I can do about it.
The most expensive and scarce resource for man is time, paradoxically, it' s infinite.
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1732 | |
1106 | |
752 | |
447 | |
240 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.