Using External Relay

digimetrica · ‎09-05-2014

Hello, I happly use Fortimail for several domains inside my network. I have a customer who needs to send bulk email (not spam of course) and I have to use an external relay (like Amazon SES). I can' t figure out how to do it: the customer is using 3 internal servers so i am able to identify the IPs. But I am stuck... it seems I can' t realy from a specified IP to am external relay server. The external relay option seems to be applied to the whole Fortmail, not the single server

Bromont_FTNT · ‎09-05-2014

Sending outbound mail to a relay server is a global setting (can' t be configured per domain) Mail Settings ---> Settings ---> Relay Server

digimetrica · ‎09-05-2014

Yeah, that' s what I suspected... too bad :\

emnoc · ‎09-05-2014

Can the client just attach to the external mail relay and avoid the fortimail? Also you can allow the clients to send via the fortimail or something like this. http://docs-legacy.fortinet.com/fmail/5-1-1/admin/index.html#page/FortiMail_Online_Help/mail_settings_06_43.html

PCNSE

NSE

StrongSwan

digimetrica · ‎09-05-2014

there are 3 servers right now using Fortimail for relaying using php scripts. in order to allow them to relay locally or using directly an external relay i have to change the coding. Since now they are configured to send mails using fortimail i only needed to change one configuration (but it' s not possibile it seems)

Istvan_Takacs_FTNT · ‎09-05-2014

Do they really need to be relayed via Fortimail? Why they just don' t directly be sent to the destination from the php app? Sounds like the function is already built-in, so they can generate emails and communicate to Fortimail via SMTP anyway. Sounds a bit overkill to chain the email delivery via multiple relay servers. If Amazon SES accepts bulk emails only from pre-defined sources than you can still NAT the connections to that external address on the FGT (or on any other basic firewalls)

digimetrica · ‎09-08-2014

I wanted to route emails on the Fortmail for logging purposes: I don' t have full access to those servers. Amazon SES should use authentication. It doesn' t rely only on the IP address. Anyway I asked the developers to change their php codes :)

Bromont_FTNT · ‎09-08-2014

You could try the Fortimail in transparent mode, it will still scan and log smtp traffic but traffic will flow out to whatever relay server the sending MTA specified.

digimetrica · ‎09-08-2014

Yep, in transparent mode you can do it without problems :) Sadly I can' t switch operating mode right now: too many domains configured on my FM.... it' s easier to go with php :)

Uwe_Sommerfeld · ‎09-09-2014

There are some additional routing features hidden in the advanced options config system global set mta-adv-ctrl-status enable end However I don' t see any sender-based relay host handoff for this. You could also give the content / antispam engine a try and use an outbound profile with an mx handoff action. However this might not be the best option.

Using External Relay

Nominate a Forum Post for Knowledge Article Creation

You are leaving our website