Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
Socarsky
New Contributor

Where is my mistake?

Where is my mistake on setting below Policy that I assigned only some services for users who added in source address. I wan the users use only emails mostly with those services but the Policy's users cannot able to access such services even looks everything fine.

 

6 REPLIES 6
Fullmoon
Contributor III

If this is outgoing policy NAT should be enabled.

Fortigate Newbie

Fortigate Newbie
Socarsky

Fullmoon wrote:

If this is outgoing policy NAT should be enabled.

I do that. it must be checked its checkbox, here is the policy's setting.

ede_pfau
Esteemed Contributor III

Could it be that your users use IMAP?


Ede

"Kernel panic: Aiee, killing interrupt handler!"
Ede"Kernel panic: Aiee, killing interrupt handler!"
emnoc
Esteemed Contributor III

I hate to say this ; diag debug flow what be your best friend . To go along with  Ede_pfau are you using IMAP IMAPs POP or POPs or simple mail relaying ?

 

You have so many things to look at but not enough information to determine what to start with.

 

Ken

 

PCNSE 

NSE 

StrongSwan  

PCNSE NSE StrongSwan
Socarsky
New Contributor

Now the policy for email users is working fine, I applied two things, first is giving a place at the top in policy as you can see the below.

The below is showing how to give a place at somewhere in policy id's. We have to use "Move To" to see what's a sequel's ID before the action.

Second is as emnoc's offer I added IMAP in service of the policy.

ede_pfau
Esteemed Contributor III

For future moves, add the column "ID" to the policy table. I put it right behind the "Seq.#" column.


Ede

"Kernel panic: Aiee, killing interrupt handler!"
Ede"Kernel panic: Aiee, killing interrupt handler!"
Labels
Top Kudoed Authors