Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
abelio
SuperUser
SuperUser

Created on ‎08-19-2021 11:46 AM

Two different session profile, same source IP

Hi all,

Running 6.2.7, i'm trying to apply two different session profiles in both IP policies, but with same source IP

Result: always match the first IP policy in order;  it seems that the match is triggered just by source IP and ignore everything else in the session profile.

Is it correct?  is it by design or is it flaw?

 

I'll try in a test box with 6.4.x / 7.x , but I would share with this question here.

 

Thanks for your input,

 

 

regards




/ Abel

regards / Abel
Labels:
1977
0 Kudos
1 REPLY 1
saneeshpv_FTNT
Staff
Staff

Created on ‎07-24-2023 03:27 AM

HI,

 

IP Based policies are applied based on the IP address of connecting SMTP Client or Server and not bases on the IP address of connecting SMTP Client and Server like in a Firewall policy and this I believe is by Design.

 

Reference:

How to use policies | FortiMail 7.4.0 (fortinet.com)

"IP-based policies are applied based on the IP address of the connecting SMTP client and, if the FortiMail unit is operating in transparent mode, the SMTP server"

 

Best Regards,

825
0 Kudos
Announcements
Check out our Community Chatter Blog! Click here to get involved
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.