Testing The Installation; Example 3: Fortimail Unit For An Isp Or Carrier - Fortinet FortiMail-100 Install Manual

Secure messaging platform

Hide thumbs Also See for FortiMail-100:

Quick start manual (2 pages)

Quick start manual (2 pages)

Quick start manual (2 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

Table of Contents

Example 3: FortiMail unit for an ISP or carrier

Testing the installation

Example 3: FortiMail unit for an ISP or carrier

128

Exceptions to SMTP connections that can be proxied or relayed include SMTP

connections destined for the FortiMail unit itself. For those local connections, such as

email messages from email users requesting deletion or release of their quarantined

email, you must choose to either allow or block the connection.

Proxy/relay pick-up is configured separately for incoming and outgoing connections.

Note: For information on determining directionality, see

directionality" on page

In this deployment example, incoming connections arriving on port2 must be scanned

before traveling to the main email server, and therefore are configured to be are proxied —

that is, picked up by the implicit relay.

Outgoing connections arriving on port1 will contain email that has already been scanned

once, during SMTP clients' relay to the main email server. In addition, outgoing

connections by the main mail server will be encrypted using TLS. Encrypted connections

cannot be scanned. Therefore outgoing connections will be passed through, and neither

proxied nor implicitly relayed.

To configure SMTP proxy and implicit relay pick-up

1 Go to Mail Settings > Proxies > SMTP in the advanced mode of the web-based

manager.

2 Configure the following:

Port 1

Incoming SMTP connections

Outgoing SMTP connections

Local SMTP connections

Port 2

Incoming SMTP connections

Outgoing SMTP connections

Local SMTP connections

3 Select Apply.

Basic configuration is now complete, and the installation may be tested. For testing

instructions, see

"Testing the installation" on page

For information on configuring additional features, see the

In this example, a FortiMail unit operating in transparent mode is positioned as an offshoot

from the backbone or other primary traffic flow between the internal and external network.

A router uses policy-based routes to redirect only SMTP connections to the FortiMail unit,

which scans the traffic before allowing legitimate connections to return the overall flow.

The FortiMail unit does not receive non-SMTP traffic. (This would result in unnecessary

processing and resource usage.)

15.

are dropped

are passed through

are allowed

are proxied

are dropped

are not allowed

159.

FortiMail™ Secure Messaging Platform Version 4.0 Patch 1 Install Guide

Transparent mode deployment

"Incoming vs. outgoing

FortiMail Administration

Guide.

Revision 2

http://docs.fortinet.com/

•

Feedback

Table of Contents

Show Quick Links

Hide quick links:

Table of Contents

Troubleshooting

This manual is also suitable for:

Fortimail-400 Fortimail-100c Fortimail-2000a Fortimail-5001a Fortimail-2000b Fortimail-4000a

Testing The Installation; Example 3: Fortimail Unit For An Isp Or Carrier - Fortinet FortiMail-100 Install Manual

Example 3: FortiMail unit for an ISP or carrier

Testing the installation

Hide quick links:

Troubleshooting

Related Manuals for Fortinet FortiMail-100

Related Content for Fortinet FortiMail-100

This manual is also suitable for:

Table of Contents