EasyManua.ls Logo

Fortinet FortiMail-100 - Http:;;Docs.fortinet.com

Fortinet FortiMail-100
174 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Loading...
Gateway mode deployment Example 2: FortiMail unit in front of a firewall
FortiMail™ Secure Messaging Platform Version 4.0 Patch 1 Install Guide
Revision 2 107
http://docs.fortinet.com/Feedback
4 Select OK.
Configuring the service groups
In order to create firewall policies that governs email and FortiMail-related traffic, you must
first create service groups that contain services that define protocols and port numbers
used in that traffic.
To add a service group for internal email user and protected server traffic to the
FortiMail unit
1 Go to Firewall > Service > Group.
2 Select Create New.
3 In Group Name, enter a name to identify the service group entry, such as
SMTP_quar_services.
4 In the Available Services area, select HTTP, HTTPS, and SMTP, then select the right
arrow to move them to the Members area.
5 Select OK.
To add a service group for POP3 and IMAP traffic to the protected email server
1 Go to Firewall > Service > Group.
2 Select Create New.
3 In Group Name, enter a name to identify the service group entry, such as
PO3_IMAP_services.
4 In the Available Services area, select POP3 and IMAP, then select the right arrow to
move them to the Members area.
5 Select OK.
Configuring the virtual IPs
In order to create the firewall policies that forward from the FortiMail unit and local and
remote email users to the protected email server, you must first define static NAT
mappings from a public IP address on the FortiGate unit to the IP address of the protected
email server, and from an internal IP address on the FortiGate unit to the IP address of the
protected email server, by creating virtual IP entries.
To add a wan1 virtual IP for the protected email server
1 Go to Firewall > Virtual IP > Virtual IP.
2 Select Create New.
3 Complete the following:
Note: To add virtual IPs, the FortiGate unit must be operating in NAT mode. For more
information, see the FortiGate Administration Guide.
Name Enter a name to identify the virtual IP entry, such as
protected_email_server_VIP_wan1.
External Interface Select wan1.
Type Select Static NAT.

Table of Contents

Other manuals for Fortinet FortiMail-100

Preview: Quick Start Guide
Quick Start Guide2 pages

Related product manuals