We have just upgraded to 2.8, i have found out that my server is blacklisted on list.dsbl.org. I have just configured Spam filter to stop incoming spammers and added some of the RBL freebies, my question is would fortigate scan outgoing emails from my server as well to ensure that people internally are not sending out spam messages.
my question is would fortigate scan outgoing emails from my server as well to ensure that people internally are not sending out spam messages.
Not really, as the spam filters check against blacklists and internal hosts ip addresses would not be on blacklists.
Instead, i would recommend that you prevent outgoing SMTP altogether, except from you mail servers ip address. this will prevent viruses spreading and spammers originating from inside. If they send via the mailserver, you will be able to track it and pinpoint the user/machine.
If you are blacklisted at " list.dsbl.org" , then you will need to contact them to get removed. they will probably do a few tests first before removing you though.
You may have been added if your incoming mailserver was/is an open relay (which is the most common problem).
UK Based Technical Consultant
Specialising in Systems, Apps, SAN Storage and Networks, with over 25 Yrs IT experience.
No you dont have to choose port forwarding. Virtual IP is a one to one mapping of Public IP address to a Private IP. So you donot have to enable any network addr translation in order for your mail server to work. You must only be specific on what service you will allow.. say (smtp) for your email sever.
Ya i see what you are saying, it is already like that. the problem is that
I believe that i am not setting my spam filter right, the users are recieving messages from outside tagged by spam (i do not want them to get it in their mailboxes) , and i can not set it to discard because when i tested it, it discarded innocent messages from yahoo and hotmail. All what i put in my settings is to RBL & ORDBL check that is all but i am not sure about the spam action?
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.