FortiMail
FortiMail provides advanced, multi-layer protection against the full spectrum of email-borne threats
Not applicable
Article Id 197891
Article
DescriptionAdding the domain name of your email server to a white list is not recommended.
Components
  • FortiMail 2.0 and greater
Steps or Commands

It is not recommended to add the domain name of your email server to a white list. If the domain name of a protected server is whitelisted, spammers can bypass antispam processing by masquerading as email users local to the protected server. The white list entry would prevent your FortiMail unit from being able to detect the spam.

Instead of whitelisting the protected domain, consider using other features that provide you with the desired results.

For example, employees in a remote office might send email using their ISP's SMTP server to the corporate email server. The ISP's SMTP server does not belong to a protected domain, and email from this server might sometimes be detected as spam, even though it is being sent by legitimate employees. To solve this, you could reconfigure remote employees' email client software to deliver email using your FortiMail unit as the SMTP server, and enable SMTP authentication.