Local-based filters
To configure the local-based AntiSpam filter in the CLI: config emailfilter bwl
FGT-300D-SPAM (bwl) # edit 1 new entry ‘1’ added
FGT-300D-SPAM (1) # set name myBWL
FGT-300D-SPAM (1) # config entries config entries
edit 1
set status enable set type ip set action spam set addr-type ipv4 set ip4-subnet 10.1.100.0 255.255.255.0
next
end
config emailfilter profile edit “myLocalEmailFilter” set spam-filtering enable set options spambwl spamhelodns spamraddrdns config smtp
set action tag
end set spam-bwl-table 1
next
end config firewall policy
edit 1 …..
set inspection-mode proxy set emailfilter-profile “myLocalEmailFilter”
next end
To configure the local-based AntiSpam filter in the GUI:
- Go to Security Profiles > Email Filter.
- Click Create or select an existing profile and click Edit.
- In the Firewall policy, create or edit a rule.
- Set the inspection-mode to Proxy-based.
- Enable the Email Filter option and select the profile previously created.
- Set SSL Inspection to a profile that has deep SSL inspection enabled.
- Deep inspection is required if you intend to filter SMTP, POP3, IMAP, or any SSL/TLS encapsulated protocol.
- Below is an example of a profile with deep SSL inspection enabled.
To configure bannedwords in the CLI:
config emailfilter bword edit 1 set name “banned” config entries
edit 1 set pattern “undesired_word”
next
end
next
end
config emailfilter profile edit “myBannedWordsProfile” config file-filter set status disable
end set spam-filtering enable set options bannedword set spam-bword-table 1
next
end
Having trouble configuring your Fortinet hardware or have some questions you need answered? Check Out The Fortinet Guru Youtube Channel! Want someone else to deal with it for you? Get some consulting from Fortinet GURU!