Configuring The Outgoing Proxy - Fortinet FortiMail-100 Install Manual

Secure messaging platform

Hide thumbs Also See for FortiMail-100:

Quick start manual (2 pages)

Quick start manual (2 pages)

Quick start manual (2 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

Table of Contents

Transparent mode deployment

Configuring the outgoing proxy

FortiMail™ Secure Messaging Platform Version 4.0 Patch 1 Install Guide

Revision 2

http://docs.fortinet.com/

•

Feedback

In this deployment example, two IP-based policies are configured. The first policy governs

connections from the internal subscriber network. The second policy matches all other

connections that did not match the first policy, and will therefore govern connections from

the external network.

To configure the IP-based policy for connections from internal SMTP clients

1 Go to Policy > Policies > IP Policies in the advanced mode of the web-based manager.

2 Select New.

3 In Match client against, type the IP address and netmask of your subscriber network.

4 In Match server against, type 0.0.0.0/0 to match all SMTP server IP addresses.

5 From Session, select internal_session_profile.

6 From AntiSpam, select the name of an antispam profile. When this profile detects

spam, it will affect the subscriber's MSISDN reputation score.

7 From AntiVirus, select the name of an antivirus profile. When this profile detects a

virus, it will affect the subscriber's MSISDN reputation score.

8 Select OK.

The internal network policy appears at the bottom of the list of IP-based policies.

Policies are evaluated in order until a policy is found that matches the connection.

Because the default IP-based policy (0.0.0.0/0 --> 0.0.0.0/0) matches all

connections, and because it is first in the list, in order for connections to be able to

match the new policy, you must move the new policy to an index number above the

default policy.

9 Select Move.

10 In To, type 1.

11 Select OK.

The new policy for internal SMTP clients appears above the default policy, in the row

whose index number is 1.

To configure the IP-based policy for connections from external SMTP clients

1 Go to Policy > Policies > IP Policies in the advanced mode of the web-based manager.

2 Select Edit for the default policy whose Match column contains

0.0.0.0/0 --> 0.0.0.0/0.

3 From Session, select external_session_profile.

4 From AntiSpam, select the name of an antispam profile. When this profile detects

spam, it will affect the SMTP client's sender reputation score.

5 From AntiVirus, select the name of an antivirus profile. When this profile detects a

virus, it will affect the SMTP client's sender reputation score.

6 Select OK.

When operating in transparent mode, the FortiMail unit can use either transparent proxies

or an implicit relay to inspect SMTP connections. If connection pick-up is enabled for

connections on that network interface, the FortiMail unit can scan and process the

connection. If not enabled, the FortiMail unit can either block or permit the connection to

pass through unmodified.

Example 3: FortiMail unit for an ISP or carrier

137

Table of Contents

Show Quick Links

Hide quick links:

Table of Contents

Troubleshooting

This manual is also suitable for:

Fortimail-400 Fortimail-100c Fortimail-2000a Fortimail-5001a Fortimail-2000b Fortimail-4000a

Configuring The Outgoing Proxy - Fortinet FortiMail-100 Install Manual

Configuring the outgoing proxy

Hide quick links:

Troubleshooting

Related Manuals for Fortinet FortiMail-100

Related Content for Fortinet FortiMail-100

This manual is also suitable for:

Table of Contents