Unlock Exclusive Benefits
Join Our Community Today!
Join our community and post in the forum to earn your exclusive Holiday badge! Become a member today!
LOGIN/REGISTER
CONTINUE AS A GUEST
- Support Forum
- Knowledge Base
- Customer Service
- Internal Article Nominations
- FortiGate
- FortiClient
- FortiADC
- FortiAIOps
- FortiAnalyzer
- FortiAP
- FortiAuthenticator
- FortiBridge
- FortiCache
- FortiCarrier
- FortiCASB
- FortiConverter
- FortiCNP
- FortiDAST
- FortiDDoS
- FortiDB
- FortiDNS
- FortiDLP
- FortiDeceptor
- FortiDevSec
- FortiDirector
- FortiEdgeCloud
- FortiEDR
- FortiExtender
- FortiGuest
- FortiGate Cloud
- FortiGuard
- FortiHypervisor
- FortiInsight
- FortiIsolator
- FortiMail
- FortiMonitor
- FortiManager
- FortiNAC
- FortiNAC-F
- FortiNDR (on-premise)
- FortiNDRCloud
- FortiPAM
- FortiPhish
- FortiPortal
- FortiPresence
- FortiSRA
- FortiProxy
- FortiRecon
- FortiRecorder
- FortiScan
- FortiSandbox
- FortiSASE
- FortiSIEM
- FortiSOAR
- FortiSwitch
- FortiTester
- FortiWAN
- FortiToken
- FortiVoice
- FortiWeb
- Wireless Controller
- FortiAppSec Cloud
- RMA Information and Announcements
- Lacework
- FortiCloud Products
- ZTNA
- 4D Documents
- Customer Service
- Community Groups
- Blogs
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
- Fortinet Community
- Support Forum
- Fortimail Feature
Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Mute
- Printer Friendly Page
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Fortimail Feature
Dear All,
We already try fortimail, we have question about fortimail feature, anyone have experience for this :
1. Can we modify what fortiguard do with deep header analysis, what is the confidence degree, can we know under what method fortiguard give this value.
2. If we using DNSBL, there is valid email from yahoo that being block, can we still use DNSBL, but fortiguard can detect valid email even the ip address of yahoo server is in DNSBL (without create any whitelist for yahoo domain, or personal yahoo account)
3. User valid email is being blocked because of hash check method, it is identified as spam, can we disable this feature? or are there any execption?
4. Can we change the method of fortimail policy checking, what user want is email receive is not block directly by one scanning method, instead of go trough another scanning which will increase the score. For now is when email being check to DNSBL and the ip address is listed, the email is give action reject or quarantine, we cannot set to go to another checking.
5. For trial license is it true that will cause a lot of false positive compare to full license?
Please advice. Thank you for your help.
Regards,
Chris
3 REPLIES 3
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Q1:
Yes, the option exist for more detailed inspection. Not sure I would rate confidence degree and you would need to try and test it. There’s a split risk of enabling this do to other concerns and issues, so you might want to proceed with caution
Q2:
Can you provide clarity; “How is this email being blocked?†If DNSBL is not blocking it what detection method blocked it. DNSBL can be enable or not per policy and on what you want.
Q3
I ‘m pretty sure it’s not an automated feature and you have to enable it and can disable it
Q4
Can you clarify; Why do you think you need multiple reputation scoring? You should trust one or not trust it. And what trigger would determine pass it along to be re-evaluated and scored?
Also this link comes in handy on the order of execution.
http://docs.fortinet.com/fmail/fortimail-admin/index.html#page/FortiMail%2520Online%2520Help/overview.01.24.html
You might want to read it.
PCNSE
NSE
StrongSwan
PCNSE
NSE
StrongSwan
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hi Emnoc,
Thank you for your reply
q2. what the user want is when email block by dnsbl, there is option to go to another checking instead of directly do action block or quarantine
There are emails that being block by spam hash check, although the email is valid email not spam.
Please advice. Thank you for your help.
Regards,
Chris
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
q2. what the user want is when email block by dnsbl, there is option to go to another checking instead of directly do action block or quarantineSo you don' t trust DNSBL? So why enabled?
Also the unit will execute whatever profile that you created & for the DNSBL check. See the attached file and this is where you would disable the " deep header" check btw.
( I overlaid the fortinet flow chart and a snippet of my profile)
So you have controls available in your hands, if you don' t trust DNSBL than don' t enable it. The unit is only going act upon what you have enabled per policies and for AS detection.
When DNSBL is check, it will follow whatever action you have , and regardless if that action is to " reject" or " not" .
PCNSE
NSE
StrongSwan
PCNSE
NSE
StrongSwan
Labels
-
FortiGate
9,427 -
FortiClient
1,917 -
5.2
801 -
FortiManager
798 -
5.4
639 -
FortiAnalyzer
615 -
FortiSwitch
515 -
FortiAP
507 -
FortiClient EMS
474 -
6.0
416 -
5.6
362 -
FortiMail
340 -
SSL-VPN
303 -
IPsec
277 -
6.2
251 -
FortiAuthenticator v5.5
234 -
FortiWeb
226 -
FortiNAC
224 -
5.0
196 -
FortiGuard
151 -
SD-WAN
145 -
FortiAuthenticator
135 -
6.4
128 -
Firewall policy
108 -
FortiGateCloud
105 -
FortiSIEM
104 -
FortiCloud Products
102 -
FortiToken
96 -
Wireless Controller
86 -
Customer Service
83 -
FortiProxy
72 -
High Availability
68 -
4.0MR3
64 -
Fortivoice
61 -
FortiEDR
61 -
ZTNA
60 -
Routing
58 -
FortiADC
57 -
VLAN
56 -
DNS
55 -
BGP
53 -
FortiGate-VM
51 -
SAML
50 -
Authentication
50 -
RADIUS
49 -
FortiSandbox
48 -
LDAP
48 -
NAT
47 -
FortiExtender
46 -
Certificate
44 -
SSO
43 -
FortiDNS
42 -
FortiGate v5.4
35 -
VDOM
35 -
FortiLink
35 -
FortiSwitch v6.4
34 -
Application control
34 -
Interface
33 -
FortiConnect
32 -
Logging
32 -
FortiWAN
29 -
Web profile
29 -
Virtual IP
28 -
FortiGate v5.2
26 -
FortiConverter
26 -
FortiPAM
26 -
FortiPortal
23 -
SSL SSH inspection
23 -
FortiGate Cloud
21 -
Traffic shaping
21 -
Automation
21 -
Static route
21 -
FortiSwitch v6.2
20 -
SSID
20 -
SNMP
19 -
FortiMonitor
18 -
WAN optimization
18 -
OSPF
16 -
System settings
16 -
FortiDDoS
15 -
Security profile
15 -
Web application firewall profile
15 -
FortiGate v5.0
14 -
Fortisoar
14 -
FortiCASB
14 -
API
14 -
Admin
14 -
IP address management - IPAM
14 -
IPS signature
13 -
FortiManager v5.0
12 -
Proxy policy
12 -
FortiManager v4.0
11 -
FortiRecorder
11 -
Traffic shaping policy
11 -
FortiAP profile
11 -
Web rating
11 -
Intrusion prevention
11 -
FortiBridge
10 -
Explicit proxy
10 -
Fabric connector
10 -
Port policy
10 -
4.0MR2
9 -
FortiGate v4.0 MR3
9 -
FortiAnalyzer v5.0
9 -
FortiWeb v5.0
9 -
DNS filter
9 -
Users
9 -
Traffic shaping profile
9 -
FortiDeceptor
8 -
FortiCache
8 -
RMA Information and Announcements
8 -
trunk
8 -
Antivirus profile
8 -
Fortinet Engage Partner Program
8 -
4.0
7 -
FortiToken Cloud
6 -
Packet capture
6 -
Authentication rule and scheme
6 -
FortiCarrier
5 -
FortiScan
5 -
FortiTester
5 -
Application signature
5 -
DLP profile
5 -
DoS policy
5 -
Email filter profile
5 -
3.6
4 -
FortiDirector
4 -
Internet service database
4 -
NAC policy
4 -
DLP sensor
4 -
Netflow
4 -
Protocol option
4 -
TACACS
4 -
Replacement messages
4 -
SDN connector
4 -
Service
4 -
VoIP profile
4 -
Multicast routing
4 -
Cloud Management Security
4 -
FortiDB
3 -
FortiHypervisor
3 -
FortiNDR
3 -
DLP Dictionary
3 -
Multicast policy
3 -
FortiInsight
2 -
FortiAI
2 -
Kerberos
2 -
File filter
2 -
Schedule
2 -
Zone
2 -
Vulnerability Management
2 -
FortiEdge Cloud
2 -
FortiGuest
2 -
4.0MR1
1 -
FortiManager-VM
1 -
FortiCWP
1 -
Subscription Renewal Policy
1 -
Video Filter
1 -
ICAP profile
1 -
Virtual wire pair
1 -
FortiEdge
1
Top Kudoed Authors
| User | Count |
|---|---|
| 2085 | |
| 1179 | |
| 770 | |
| 450 | |
| 344 |
Broad. Integrated. Automated.
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Security Research
Company
News & Articles
Copyright 2025 Fortinet, Inc. All Rights Reserved.