Data Loss Prevention

 View Only

 Symantec DLP & Fortimail Entegration Issue

Mustafa avsever's profile image
Mustafa avsever posted Sep 30, 2024 09:59 AM

Hello Community,

At one of our customers, we are trying to integrate Symantec DLP and FortiMail. Currently, there are three different locations in the DLP system that have Network Prevent for Email. A server has been set up for these locations.

We are now trying to route the emails coming to FortiMail through DLP. When I add a new server from the DLP interface, providing the FortiMail IP and port number 1025, and configure the necessary permissions through the firewall, the FortiMail server does not appear as running.

Do I need to set up a separate server specifically for FortiMail, or is there another step I’m missing?

Junaid Ahmed's profile image
Junaid Ahmed

Dear Mustafa,

I have attached the article that defines port 10025 for Network Prevent for Mail:

https://knowledge.broadcom.com/external/article/160297/ports-used-by-symantec-dlp.html

Additionally, I have a few questions to clarify:
 
1. Have you installed the network capture tool on NP for Email?
 
2. Are you using Forward or Reflection mode?
3. Is there any MTA between the mail server and NP for Email?
 
I hope this information helps you!
Regards 
Junaid Ahmed