Created on 11-24-2004 12:00 AM Edited on 06-10-2022 04:18 AM By Anthony_E
Article
Description | This article describes a list and order of antispam filtering checks - an overview. |
Components | For all FortiGates running FortiOS 4.00 MR3 and 5.0.x. |
Steps or Commands |
The FortiGate queries the FortiGuard Antispam Service to determine if the IP address of the client delivering the email is blacklisted.
A match will cause the FortiGate to treat delivered messages as spam. The default setting of the hdrip CLI command is disable. If it isenabled, the FortiGate will check all the IP addresses in the header of SMTP email against the FortiGuard Antispam Service.
The following CLI command will enable the SMTP header IP check:
# config firewall profile
Order of SMTP and SMTPS spam filtering:
The FortiGate scans SMTP and SMTPS email for spam in the order given below. SMTPS spam filtering is available on FortiGates that support SSL content scanning and inspection.
1) IP address black/white list (BWL) check on last hop IP.
2) DNSBL & ORDBL check on last hop IP, FortiGuard Antispam IP check on last hop IP, HELO DNS lookup.
3) MIME headers check, E-mail address BWL check.
4) Banned word check on email subject.
5) IP address BWL check (for IPs extracted from 'Received' headers).
6) Banned word check on email body.
7) Return email DNS check, FortiGuard Antispam email checksum check, FortiGuard Antispam URL check, DNSBL & ORDBL check on public IP extracted from header.
Order of IMAP, POP3, IMAPS and POP3S spam filtering.
The FortiGate scans IMAP, POP3, IMAPS and POP3S email for spam in the order given below. IMAPS and POP3S spam filtering is available on FortiGates that support SSL content scanning and inspection.
1) MIME headers check, E-mail address BWL check.
2) Banned word check on email subject
3) IP BWL check.
4) Banned word check on email body.
5) Return email DNS check, FortiGuard Antispam email checksum check, FortiGuard Antispam URL check, DNSBL & ORDBL check. |
Related Articles
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.