Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
Not applicable

Created on ‎09-19-2004 10:51 AM

my server is blacklisted, help!

We have just upgraded to 2.8, i have found out that my server is blacklisted on list.dsbl.org. I have just configured Spam filter to stop incoming spammers and added some of the RBL freebies, my question is would fortigate scan outgoing emails from my server as well to ensure that people internally are not sending out spam messages. thanks W
1295
0 Kudos
5 REPLIES 5
UkWizard
New Contributor

Created on ‎09-19-2004 03:02 PM

my question is would fortigate scan outgoing emails from my server as well to ensure that people internally are not sending out spam messages.
Not really, as the spam filters check against blacklists and internal hosts ip addresses would not be on blacklists. Instead, i would recommend that you prevent outgoing SMTP altogether, except from you mail servers ip address. this will prevent viruses spreading and spammers originating from inside. If they send via the mailserver, you will be able to track it and pinpoint the user/machine. If you are blacklisted at " list.dsbl.org" , then you will need to contact them to get removed. they will probably do a few tests first before removing you though. You may have been added if your incoming mailserver was/is an open relay (which is the most common problem).
UK Based Technical Consultant FCSE v2.5 FCSE v2.8 FCNSP v3 Specialising in Systems, Apps, SAN Storage and Networks, with over 25 Yrs IT experience.
589
0 Kudos
Not applicable
In response to UkWizard

Created on ‎09-19-2004 06:15 PM

Check your virtual IP Policy for your mail server, you must not check the NAT box otherwise list.dsbl.org will see that your mail server has an open relay. This was what happen to one of our client.
589
0 Kudos
Not applicable
In response to

Created on ‎09-19-2004 11:58 PM

if i do not check the NAT box in my Virtual IP Policy then i will have to choose " port forwarding" ? and fill out the External Service Port? am not sure how to do that? Thanks
589
0 Kudos
Not applicable
In response to

Created on ‎09-20-2004 12:37 AM

No you dont have to choose port forwarding. Virtual IP is a one to one mapping of Public IP address to a Private IP. So you donot have to enable any network addr translation in order for your mail server to work. You must only be specific on what service you will allow.. say (smtp) for your email sever.
589
0 Kudos
Not applicable
In response to

Created on ‎09-20-2004 08:53 AM

Ya i see what you are saying, it is already like that. the problem is that I believe that i am not setting my spam filter right, the users are recieving messages from outside tagged by spam (i do not want them to get it in their mailboxes) , and i can not set it to discard because when i tested it, it discarded innocent messages from yahoo and hotmail. All what i put in my settings is to RBL & ORDBL check that is all but i am not sure about the spam action? thanks
589
0 Kudos
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.​

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2023 Fortinet, Inc. All Rights Reserved.