You can enable spamBlocker for the SMTP or POP3 proxy.
Before You Begin
Before you can configure spamBlocker for an SMTP or POP3 proxy policy, you must configure the policy to use a user-defined proxy action. To create a user-defined proxy action, you can clone the default (predefined) proxy action, and use that proxy action for the proxy policy.
To find the proxy action your policy uses:
- Select Firewall > Firewall Policies.
- Select the proxy policy, and from the Action menu, select Edit Policy.
The Policy Configuration page appears.
- Select the Proxy Action tab.
The Proxy Action for the policy appears at the top.
- Verify whether the proxy action is a predefined or user-defined proxy action.
For more information about proxy actions, see About Proxy Actions.
If the proxy policy uses a predefined proxy action, you must clone the proxy action before you can enable subscription services for the proxy policy. You can clone the proxy action in the Proxy Action tab when you edit the proxy policy.
- From the Proxy Action drop-down list, select Clone the current proxy action.
- Type a new name for the cloned proxy action, or use the default name.
- Edit the proxy action.
For more information, see About Proxy Actions.
- Click Save.
Configure spamBlocker for an SMTP or POP3 Proxy Action
- Select Subscription Services > spamBlocker.
The spamBlocker configuration page appears, with a list of the SMTP and POP3 proxy actions on your XTM device and whether spamBlocker is enabled for each one.
- In the spamBlocker Actions list, select a user-defined SMTP or POP3 proxy action. Click Configure. You cannot configure spamBlocker for a predefined proxy action.
The spamBlocker configuration settings appear.
- Select the Enable spamBlocker check box.
- Set the actions spamBlocker applies for each category of email in the drop-down lists adjacent to each spam category. WatchGuard recommends you use the Add a subject tag action for messages categorized as Suspect. If you select this action, you can change the tag that appears in the text box to the right of the drop-down list.
For more information on spamBlocker tags, see spamBlocker Actions, Tags, and Categories.
- If you want to send a log message each time spamBlocker takes an action, select the
Send a log message check box for the action. If you do not want to record log messages for an action, clear this check box.
- The When the spamBlocker server is unavailable drop-down list specifies how the XTM device handles incoming email when the spamBlocker server cannot be contacted. We recommend you use the default Allow action.
- If you set this option to Deny for the POP3 or SMTP proxy, it causes a conflict with Microsoft Outlook. When Outlook starts a connection to the email server, spamBlocker tries to contact the spamBlocker server. If the spamBlocker server is not available, spamBlocker stops the email download. When this happens, a cycle starts. Outlook tries to download email and spamBlocker stops the download. This continues until the XTM device can connect to the spamBlocker server, or the request is dropped because the proxy times out, or you cancel the request.
- If you set this option to Deny with the SMTP proxy, the XTM device sends this 450 SMTP message to the sending email server: “Mailbox is temporarily unavailable.”
- The Send log message for each email classified as not spam check box specifies whether a message is added to the log file if an email message is scanned by spamBlocker but is not designated as Confirmed Spam, Bulk, or Suspect. Select this check box if you want to add a message to the log file in this situation.
- (Optional) Add spamBlocker exception rules, as described in About spamBlocker Exceptions.
- (Optional) Enable Virus Outbreak Detection, as described in Enable and Set Parameters for Virus Outbreak Detection (VOD) .
The XTM device uses the HTTP protocol to send requests to the spamBlocker server. If the traffic from the XTM device must go through a perimeter firewall to reach the Internet, make sure the firewall does not block HTTP traffic.
After you enable spamBlocker for a proxy action or policy, you can define global spamBlocker settings. These settings apply to all spamBlocker configurations. Click Settings to see or modify the global spamBlocker configuration settings. For more information, see Configure Global spamBlocker Settings.