Fortinet white logo
Fortinet white logo

Administration Guide

Accessing the personal quarantine and webmail

Accessing the personal quarantine and webmail

Each email user has a personal quarantine, also known as the Bulk mailbox folder. If you selected that action in the antispam action profiles, spam for an email user is redirected to their personal quarantine.

Email users should monitor their personal quarantines to ensure that legitimate email is not accidentally quarantined. To do this, you can enable quarantine reports (see Configuring global quarantine report settings, Configuring protected domains, and Using quarantine reports). You can also enable email users to view their Bulk folder through FortiMail webmail.

In addition to personal quarantine access, in server mode, FortiMail webmail also provides access to the Inbox, address book, and other features.

Available access methods vary by the operation mode of the FortiMail unit:

Note

Email users cannot access their personal quarantines through POP3 or IMAP.

Accessing personal quarantines through FortiMail webmail (gateway and transparent mode)

To allow email users to access Bulk folders through FortiMail webmail, the administrator must:

  • create an authentication profile that allows users to authenticate
  • configure an incoming recipient-based policy that matches the email user’s address, where webmail access to the quarantine is enabled, and the authentication profile is selected

For details, see Controlling email based on sender and recipient addresses and Configuring authentication profiles.

Once this is configured, the administrator informs email users of the FortiMail webmail URL. When they log in, email users will immediately see their Bulk folders (unlike server mode, in gateway mode or transparent mode, this is the only mailbox folder).

For additional instructions related to their personal quarantine, email users can click the Help button in FortiMail webmail.

Accessing FortiMail webmail (server mode)

Unlike gateway mode and transparent mode, server mode does not require that the administrator create an authentication profile. However, he or she must still configure an incoming recipient-based policy that matches the email user’s address, where webmail access to the quarantine is enabled through a resource profile.

Once this is configured, the administrator informs email users of the FortiMail webmail URL. When they log in, email users will immediately see their mailbox folders, including their Inbox, in addition to their Bulk folder.

For additional instructions related to their personal quarantine, email users can click the Help button in FortiMail webmail.

Accessing mailboxes through POP3 or IMAPv4 (server mode)

To allow email users to access their Inbox, Bulk, and other folders through an email client, the administrator must configure an incoming recipient-based policy that matches the email user’s address, where POP3/IMAPv4 access to the quarantine is enabled.

Once this is configured, the administrator tells email users about the IP address and POP3/IMAPv4 port number of the FortiMail unit (see also Appendix C: Port Numbers), which they will use when configuring their email client to connect. After their email client is connected, email users will see their mailbox folders, including their Inbox and Bulk.

If tagged spam (see Configuring antispam action profiles) appears in their Inbox, email users can use their email client’s filtering rules to redirect spam email to their Bulk folder or other folder.

Methods vary by the email client. For details, see the email client’s documentation.

Using quarantine reports

If an administrator has enabled:

When email is added to their personal quarantine, email users will periodically receive an email similar to one of the samples below.

Email users can follow the instructions in the quarantine report to release or delete email from their personal quarantine. Quarantine reports can be used from with FortiMail webmail, or from an email client with POP3 access.

Example: Quarantine report (HTML)

The following sample report in HTML format informs the email user about how many messages are in quarantine, and explains how to delete one or all quarantined messages, and how to release an individual email. Email users can make decisions to release or delete an email based on a message’s subject and sender information contained in the body of the report.

Sample quarantine report in HTML format

Example: Quarantine report (plain text)

The following sample report in plain text format informs email users about how many messages are in quarantine, and explains how to delete one or all quarantined messages, and how to release an individual email. Email users can make decisions to release or delete an email based on a message’s subject and sender information contained in the body of the report.

Note that email users cannot access their personal quarantines through POP3 or IMAP.

Sample quarantine report in plain text format

To: user1@example.com
From: release-ctrl@fm3.example.com
Subject: Quarantine Summary: [3 message(s) quarantined from Wed, 11 Jul 2007 11:00:01 to Wed, 11 Jul 2007 12:00:01]
Date: Wed, 11 Jul 2007 12:00:01 -0400

Date: Wed, 11 Jul 2007 11:11:25
Subject: Sign up for FREE offers!!!
From: "Spam Sender" <spamsender@example.org>
Message-Id: 1184166681.l6BFAj510009380000@fm3.example.com

Date: Wed, 11 Jul 2007 11:14:16
Subject: Buy cheap stuff!
From: "Spam Sender" <spamsender@example.org>
Message-Id: 1184166854.l6BFDchG0009440000@fm3.example.com

Date: Wed, 11 Jul 2007 11:15:46
Subject: Why pay more?
From: "Spam Sender" <spamsender@example.org>
Message-Id: 1184166944.l6BFF7HI0009460000@fm3.example.com

Actions:

o) Release a message:
Send an email to <release-ctrl@fm3.example.com> with subject line set to "user1@example.com:Message-Id".

o) Delete a message:
Send an email to <delete-ctrl@fm3.example.com> with subject line set to "user1@example.com:Message-Id".

o) Delete all messages:
Send an email to <delete-ctrl@fm3.example.com> with subject line set to "delete_all:user1@example.com:ea809095:ac146004:05737c7c111d68d0111d68d0111d68d0".

Accessing the personal quarantine and webmail

Accessing the personal quarantine and webmail

Each email user has a personal quarantine, also known as the Bulk mailbox folder. If you selected that action in the antispam action profiles, spam for an email user is redirected to their personal quarantine.

Email users should monitor their personal quarantines to ensure that legitimate email is not accidentally quarantined. To do this, you can enable quarantine reports (see Configuring global quarantine report settings, Configuring protected domains, and Using quarantine reports). You can also enable email users to view their Bulk folder through FortiMail webmail.

In addition to personal quarantine access, in server mode, FortiMail webmail also provides access to the Inbox, address book, and other features.

Available access methods vary by the operation mode of the FortiMail unit:

Note

Email users cannot access their personal quarantines through POP3 or IMAP.

Accessing personal quarantines through FortiMail webmail (gateway and transparent mode)

To allow email users to access Bulk folders through FortiMail webmail, the administrator must:

  • create an authentication profile that allows users to authenticate
  • configure an incoming recipient-based policy that matches the email user’s address, where webmail access to the quarantine is enabled, and the authentication profile is selected

For details, see Controlling email based on sender and recipient addresses and Configuring authentication profiles.

Once this is configured, the administrator informs email users of the FortiMail webmail URL. When they log in, email users will immediately see their Bulk folders (unlike server mode, in gateway mode or transparent mode, this is the only mailbox folder).

For additional instructions related to their personal quarantine, email users can click the Help button in FortiMail webmail.

Accessing FortiMail webmail (server mode)

Unlike gateway mode and transparent mode, server mode does not require that the administrator create an authentication profile. However, he or she must still configure an incoming recipient-based policy that matches the email user’s address, where webmail access to the quarantine is enabled through a resource profile.

Once this is configured, the administrator informs email users of the FortiMail webmail URL. When they log in, email users will immediately see their mailbox folders, including their Inbox, in addition to their Bulk folder.

For additional instructions related to their personal quarantine, email users can click the Help button in FortiMail webmail.

Accessing mailboxes through POP3 or IMAPv4 (server mode)

To allow email users to access their Inbox, Bulk, and other folders through an email client, the administrator must configure an incoming recipient-based policy that matches the email user’s address, where POP3/IMAPv4 access to the quarantine is enabled.

Once this is configured, the administrator tells email users about the IP address and POP3/IMAPv4 port number of the FortiMail unit (see also Appendix C: Port Numbers), which they will use when configuring their email client to connect. After their email client is connected, email users will see their mailbox folders, including their Inbox and Bulk.

If tagged spam (see Configuring antispam action profiles) appears in their Inbox, email users can use their email client’s filtering rules to redirect spam email to their Bulk folder or other folder.

Methods vary by the email client. For details, see the email client’s documentation.

Using quarantine reports

If an administrator has enabled:

When email is added to their personal quarantine, email users will periodically receive an email similar to one of the samples below.

Email users can follow the instructions in the quarantine report to release or delete email from their personal quarantine. Quarantine reports can be used from with FortiMail webmail, or from an email client with POP3 access.

Example: Quarantine report (HTML)

The following sample report in HTML format informs the email user about how many messages are in quarantine, and explains how to delete one or all quarantined messages, and how to release an individual email. Email users can make decisions to release or delete an email based on a message’s subject and sender information contained in the body of the report.

Sample quarantine report in HTML format

Example: Quarantine report (plain text)

The following sample report in plain text format informs email users about how many messages are in quarantine, and explains how to delete one or all quarantined messages, and how to release an individual email. Email users can make decisions to release or delete an email based on a message’s subject and sender information contained in the body of the report.

Note that email users cannot access their personal quarantines through POP3 or IMAP.

Sample quarantine report in plain text format

To: user1@example.com
From: release-ctrl@fm3.example.com
Subject: Quarantine Summary: [3 message(s) quarantined from Wed, 11 Jul 2007 11:00:01 to Wed, 11 Jul 2007 12:00:01]
Date: Wed, 11 Jul 2007 12:00:01 -0400

Date: Wed, 11 Jul 2007 11:11:25
Subject: Sign up for FREE offers!!!
From: "Spam Sender" <spamsender@example.org>
Message-Id: 1184166681.l6BFAj510009380000@fm3.example.com

Date: Wed, 11 Jul 2007 11:14:16
Subject: Buy cheap stuff!
From: "Spam Sender" <spamsender@example.org>
Message-Id: 1184166854.l6BFDchG0009440000@fm3.example.com

Date: Wed, 11 Jul 2007 11:15:46
Subject: Why pay more?
From: "Spam Sender" <spamsender@example.org>
Message-Id: 1184166944.l6BFF7HI0009460000@fm3.example.com

Actions:

o) Release a message:
Send an email to <release-ctrl@fm3.example.com> with subject line set to "user1@example.com:Message-Id".

o) Delete a message:
Send an email to <delete-ctrl@fm3.example.com> with subject line set to "user1@example.com:Message-Id".

o) Delete all messages:
Send an email to <delete-ctrl@fm3.example.com> with subject line set to "delete_all:user1@example.com:ea809095:ac146004:05737c7c111d68d0111d68d0111d68d0".