Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
wahmed
New Contributor

Created on ‎03-23-2017 03:08 PM

Moving Symantec 8380 appliances to Fortimail 400E

Dears,

1) We are planning to move the smtp gateway for the printers from symantec to fortimail. The configuration has been replicated manually on the fortimail devices.

2) Testing has been done by configuring the Fortimail VIP as the SMTP Gateway on one of the printer.

3) We tired to send some email from the printers to the users and the test was successful.

4) After a while the printer was not able to reach the default SMTP Gateway (Fortimail VIP).

 

Kindly find the below traffic logs capture on the fortimail 400E during the connectivity issue.

 

10.12.50.98 (Printer IP) 10.15.65.30 (Fortimail VIP)

 

diagnose sniffer packet any "host 10.12.50.98 and host 10.14.65.30" 4 System Time: 2017-03-23 16:42:14 ASST (Uptime: 126d 16h 3m) interfaces=[any] filters=[host 10.12.50.98 and host 10.14.65.30] 3.778537 port2 in 10.12.50.98.1084 -> 10.14.65.30.25: syn 3251863053  3.778563 port2 out 10.14.65.30.25 -> 10.12.50.98.1084: syn 2061695963 ack 3251863054  3.782731 port2 in 10.12.50.98.1084 -> 10.14.65.30.25: ack 2061695964  3.797896 port2 out 10.14.65.30.25 -> 10.12.50.98.1084: psh 2061695964 ack 3251863054  4.000069 port2 out 10.14.65.30.25 -> 10.12.50.98.1084: psh 2061695964 ack 3251863054  4.408068 port2 out 10.14.65.30.25 -> 10.12.50.98.1084: psh 2061695964 ack 3251863054  4.408194 port2 in 10.12.50.98.1084 -> 10.14.65.30.25: rst 3251863054 ack 2061695976

 

Kindly need your support to resolve this issue.

 

Regards,

Wahmed

 

 

 

 

 

5021
0 Kudos
3 REPLIES 3
emnoc
Esteemed Contributor III

Created on ‎03-24-2017 12:39 AM

That does not tell us much but where I would start would be  the logs on the FML. what do they show for the   printer? Do you have any ip rules? Do you have any smtp-auth  issues?

 

Those are the areas I would cover 1st.

 

Ken

PCNSE 

NSE 

StrongSwan  

PCNSE NSE StrongSwan
1338
0 Kudos
neonbit
Valued Contributor
In response to emnoc

Created on ‎03-25-2017 05:49 AM

It looks like the printer is able to reach the FortiMail (acks are being received).

 

Have you added the printer's IP address to the FortiMail to allow it to relay through the FortiMail? By default the FortiMail will block relay through it to non protected domains.

 

To add the printer so it can relay through the FortiMail goto Policy > Access Control > Receiving. Click New and add 10.12.50.98/24 to the Sender IP/netmask. Select Relay for the action.

 

Of course ensure that the the FortiGate is not NATing the IP from the printer. If it is then use the FortiGates IP address here.

 

If it still doesn't work check the logs on the ForitMail (Monitor > Log > History) to see what's going on.

 

 

1338
0 Kudos
wahmed
New Contributor
In response to neonbit

Created on ‎03-28-2017 01:28 PM

Hi Neonbit,

 

Thanks for the information.

 

After we changed the administrative port for the Telnet from 25 to 23 the issue has been resolved and we were able to send the email from the printers.

 

 

 

1338
0 Kudos
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.