Is there an option for a time based policy?
Specifically I would like to turn on the 'spam outbreak protection' outside of our regular business hours.
We have the issue of desired e-mails being caught up in the outbreak check, and as everyone is well aware, people expect e-mail to behave close to instant messaging. 5 minute delay is bordering on unacceptable, so the default 30min outbreak wait is too much for them to deal with. As would the process of them whitelisting the address ahead of time.
As the vast majority of the new, not yet detected by fortiguard checks, are outside of our hours, it would be nice to be able to activate the outbreak protection then when no one is expecting instant e-mails, but turn it off during business hours.
Or is there a way to release a message from the the outbreak protection early? I have turned it on a few times, and usually within the hour it snags a desired urgent e-mail for an executive.
-Mike
Hi,
We have similar probelm. You can try to set outbreak protection period to 15min. As it seems its the lowest it can get. We also set outbreak-protection-level to low
From manual:
Spam outbreak protection When there is a spam outbreak, FortiGuard antispam service may need some time to update its database. In this case, FortiMail can hold the suspicious email for a short period of time before it query the FortiGuard server for the second time. To configure how long FortiMail will hold email before query FortiGuard for the second time, use this CLI command (note that this can only be configured with the CLI command): config system fortiguard antispam set outbreak-protection-period end The default interval is 30 minutes.
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1740 | |
1108 | |
752 | |
447 | |
240 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.