i have tried to configure dnsbl , i want someone correct me if the below configure is ok or not:
config spamfilter dnsbl Edit 1 set name "Dnsbl " config entries
Edit 1 set action reject set zen.spamhaus.org server set status enable next
Edit 2 set action reject set server dnsbl.spamhaus.org set status enable next
end
thanks
Solved! Go to Solution.
you could do a "unset spam-rbl-table"
FCNSA, FCNSP
---
FortiGate 200A/B, 224B, 110C, 100A/D, 80C/CM/Voice, 60B/C/CX/D, 50B, 40C, 30B
FortiAnalyzer 100B, 100C
FortiMail 100,100C
FortiManager VM
FortiAuthenticator VM
FortiToken
FortiAP 220B/221B, 11C
Hi,
Looks good, don´t forget to add that list to the spamfilter profile.
FCNSA, FCNSP
---
FortiGate 200A/B, 224B, 110C, 100A/D, 80C/CM/Voice, 60B/C/CX/D, 50B, 40C, 30B
FortiAnalyzer 100B, 100C
FortiMail 100,100C
FortiManager VM
FortiAuthenticator VM
FortiToken
FortiAP 220B/221B, 11C
Thanks for reply,
could you please provide me that code.
thanks
Should be something like this:
config spamfilter profile
edit <profile>
set spam-rbl-table <table index> (first table is "1" etc...)
end
Then add the profile to your smtp firewall policy.
FCNSA, FCNSP
---
FortiGate 200A/B, 224B, 110C, 100A/D, 80C/CM/Voice, 60B/C/CX/D, 50B, 40C, 30B
FortiAnalyzer 100B, 100C
FortiMail 100,100C
FortiManager VM
FortiAuthenticator VM
FortiToken
FortiAP 220B/221B, 11C
Thanks for help , the complete code should like this :
#config spamfilter dnsbl #edit 1 #set name "dnsbl" #config entries #edit 0 #set action reject #set status enable #set server xbl-sbl.spamhaus.org #next #end #end #config spamfilter profile #edit "Email-filt" #set spam-rbl-table 1 #end
The profile "Email-filt" already applied to firewall policy.
please double check the above code and advise me before applied.
thanks again for response
That looks ok!
FCNSA, FCNSP
---
FortiGate 200A/B, 224B, 110C, 100A/D, 80C/CM/Voice, 60B/C/CX/D, 50B, 40C, 30B
FortiAnalyzer 100B, 100C
FortiMail 100,100C
FortiManager VM
FortiAuthenticator VM
FortiToken
FortiAP 220B/221B, 11C
Sorry dear , but could please tell me how to disable it , if problem come after applied.
Thanks so much for your time and effort.
you could do a "unset spam-rbl-table"
FCNSA, FCNSP
---
FortiGate 200A/B, 224B, 110C, 100A/D, 80C/CM/Voice, 60B/C/CX/D, 50B, 40C, 30B
FortiAnalyzer 100B, 100C
FortiMail 100,100C
FortiManager VM
FortiAuthenticator VM
FortiToken
FortiAP 220B/221B, 11C
Thanks a lot
This function check the smtp source ip and the sender client ip.
I can't send out email from the mobile network if I enable it.
 
					
				
				
			
		
| User | Count | 
|---|---|
| 2677 | |
| 1412 | |
| 810 | |
| 703 | |
| 455 | 
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2025 Fortinet, Inc. All Rights Reserved.