overview

FortiMail

Email security remains a key productivity tool for today’s organizations, as well as a successful attack vector for cyber criminals.  According to the Verizon 2018 Data Breach Investigations Report, 49% of malware was installed via malicious email.  Gartner asserts that “Advanced threats (such as ransomware and business email compromise) are easily the signature-based and reputation-based prevention mechanisms that a secure email gateway (SEG) has traditionally used.”
FortiMail Email security utilizes the latest technologies and security services from FortiGuard Labs to deliver consistently top-rated protection from common and advanced threats while integrating robust data protection capabilities to avoid data loss. 

Product Details

Organizations typically select FortiMail email security to shield users, and ultimately data, from a wide range of cyber threats. These include: ever growing volumes of unwanted spam, socially-engineered phishing and business email compromise, accelerating variants of ransomware and other malware, increasingly targeted attacks from adversaries of all kinds, and more. At the same time, FortiMail can be used to protect sensitive data of all types, reducing the risk of inadvertent loss and/or non-compliance with regulations like HIPAA, PCI, GDPR, and more

FortiGuard Services for FortiMail

Application Control

Highly effective antispam is key to protecting your organization because email is the #1 vector for the start of an advanced attack on an organization.

FortiGuard Antispam provides a comprehensive and multi-layered approach to detect and filter spam processed by organizations. Dual-pass detection technology can dramatically reduce spam volume at the perimeter, giving you unmatched control of email attacks and infections. Additionally, FortiClient endpoint agents can block spam messages on remote computers and mobile devices.

In the 2015 VBSPAM Test from Virus Bulletin, Fortinet’s antispam ranked second highest in the security industry for security effectiveness, earning a 99.98% effectiveness rating.

Fortimail Antispam Service :

  • Protects your organization against threats delivered through email with highly effective antispam protection
  • Reduces the volume of spam email at your perimeter with dual-pass detection technology
  • Keeps your security current with the fastest possible update speeds through push and pull options
  • Customizes your policies to fit your organization with antispam filtering at a domain, group, or individual user level
  • Lowers management and operational costs with “set and forget” functionality
  • Decreases both your entry and maintenance costs with device-based licensing

FortiGuard Labs Global Threat Intelligence for Fortimail Antispam

Every minute of every day FortiGuard Labs blocks approximately 21,000 spam emails and each week the Labs deliver approximately 46 million new and updated spam rules.

Fortimail Deployment Types :

Mail Gateway

Inbound and outbound proxy mail transfer agent (MTA) services for existing email servers

Transparent Mode

Email traffic is intercepted, inspected and then transmitted to the destination email server for delivery

Mail Server

Full-featured SMTP mail server with mail security functionalities

Fortimail Protections

URL Filtering

FortiGuard URL filtering service to block URLs by categories. Emails are filtered based on URI included in the mail body.

Greylist Scan

Greylist scanning blocks spam based on the behavior of the sending server, rather than the content of the messages. When receiving an email from an unknown server, the FortiMail unit will temporarily reject the message. If the mail is legitimate, the originating server will try to send it again later (RFC 2821), at which time the FortiMail unit will accept it. Spammers will typically abandon further delivery attempts in order to maximize spam throughput.

DNS Black List Scan

FortiMail unit queries one or more public DNSBL servers to determine if the sender’s IP address or IP address that appear in the “Received:” line of the message header have been blacklisted

Header Analysis

Entire message header is analyzed for known spam characteristics through decision tree analysis

Bayesian Filtering

Spam identified through probability of a message being spam based on its contents and train databases

Heuristic Scan

Spam identified through heuristic scan rules updated regularly through Fortiguard service

Image Scanning

FortiMail unit to analyze the contents of GIF, JPG, and PNG graphics to determine if the email is spam.

Forged IP Scan

Spam detected through PTR and A record queries

Bounce Address Tag Validation

Spam mechanism to avoid SPAM DSN (Delivery Status Notification).

Black/White List

Domain and IP address block and allow list. Scan is performed on Client IP, SMTP envelope and Mail Headers

Session Control

Fortimail perform limitation on sessions and verification on SMTP envelope

Sender Reputation

Fortimail provides maintenance-free means to prevent server overload from a
burst of spam, mail with invalid recipients or senders, or infected
messages

Sender Validation

Fortimail performs sender validation through DKIM, domain key or SPF checks

AV Scan

Files are scanned through local AV database regularly updated and FortiSandbox Cloud

File Type filtering

Fortimail extracts meatdata information of file to determine its file type

Content Scaning

Fortimail scans PDF, MSOFFICE and archive files using Dictionary profile with pre-defined regular expressions.

Email Archiving

Email archiving on local hard disk or remote storage server to meet government and regulatory compliance

Fortimail based Service Bundles

Fortimail Base Bundle
Get top-rated protection from traditional and emerging threats with Antispam, Antivirus and Outbreak Protection services, along with the integrated data loss prevention, email encryption, and email archiving functions.

Fortimail Advanced Bundle
For stronger protection against the most sophisticated and/or targeted attacks, the Enterprise Advanced Threat Protection Bundle includes all the services in the Base bundle, plus FortiSandbox, Content Disarm & Reconstruction, and Click Protect services, along with features like Impersonation Analysis.

Models and Specifications

Hardware

FortiMail 60D

  • Throughput-
    Email Routing
    (msg/hr)
  • 6k
  • Throughput-AS
    +AV(msg/hr)
  • 7k
  • Ports
  • 4 x RJ45
  • Recommended
    for
  • Small locations<100
    users

FortiMail 200E

  • Throughput-
    Email Routing
    (msg/hr)
  • 80k
  • Throughput-AS
    +AV(msg/hr)
  • 61k
  • Ports
  • 4 x RJ45
  • Recommended
    for
  • Medium locations with
    <400
    users

FortiMail 400E

  • Throughput-
    Email Routing
    (msg/hr)
  • 157k
  • Throughput-AS
    +AV(msg/hr)
  • 126k
  • Ports
  • 4 x RJ45
  • Recommended
    for
  • Medium locations with
    <1000
    users

FortiMail 1000D

  • Throughput-
    Email Routing
    (msg/hr)
  • 680k
  • Throughput-AS
    +AV(msg/hr)
  • 500k
  • Ports
  • 6 x RJ45 2 x SFP
  • Recommended
    for
  • Mid-to large organizations
    with < 3000 users

FortiMail 2000E

  • Throughput-
    Email Routing
    (msg/hr)
  • 1.1M
  • Throughput-AS
    +AV(msg/hr)
  • 900k
  • Ports
  • 4 x RJ45 2 x SFP
  • Recommended
    for
  • Large organizations

FortiMail 3000E

  • Throughput-
    Email Routing
    (msg/hr)
  • 1.8M
  • Throughput-AS
    +AV(msg/hr)
  • 1.5M
  • Ports
  • 4 x RJ45 2 x SFP
  • Recommended
    for
  • Very Large organizations and
    service providers
Virtual Machine

VM01

  • Throughput-
    Email Routing
    (msg/hr)
  • 34k
  • Throughput-AS
    +AV(msg/hr)
  • 26k
  • vCPU
  • 1
  • Recommended
    for
  • Medium locations with
    < 400users

VM02

  • Throughput-
    Email Routing
    (msg/hr)
  • 67k
  • Throughput-AS
    +AV(msg/hr)
  • 52k
  • vCPU
  • 2
  • Recommended
    for
  • Medium locations with
    < 1,000 users

VM04

  • Throughput-
    Email Routing
    (msg/hr)
  • 306k
  • Throughput-AS
    +AV(msg/hr)
  • 225k
  • vCPU
  • 4
  • Recommended
    for
  • Mid-to large locations
    with < 3,000 users

VM08

  • Throughput-
    Email Routing
    (msg/hr)
  • 675k
  • Throughput-AS
    +AV(msg/hr)
  • 585k
  • vCPU
  • 8
  • Recommended
    for
  • Large organizations

VM016

  • Throughput-
    Email Routing
    (msg/hr)
  • 875k
  • Throughput-AS
    +AV(msg/hr)
  • 785k
  • vCPU
  • 16
  • Recommended
    for
  • Large organizations

VM32

  • Throughput-
    Email Routing
    (msg/hr)
  • 1.2M
  • Throughput-AS
    +AV(msg/hr)
  • 1.0M
  • vCPU
  • 32
  • Recommended
    for
  • Very large
    organizations