My client have asked today if something like this would be possible:
they have some external client that sends some emails witch attachments. They have problem with these email because they stuck somehow on antivirus scanner and should be everytime confirmed manually as exception (if I good understand). They dont want to make permanent exception. They rather want to reroute only those emails to UTM and make there scanning and then reroute to another scanner to be more sure.
Is it possible (assuming I know the IP address range that belongs to that certain client) to build such DNAT rule:
source: client range
port: smtp
dest: mailserver
change
destination: external IP address of UTM
port: dont change
source: dont change
and then i would configure on the UTM email protection and routing rule that would route those email to another antivirus.
Additional question: can I change IP default external ip address which UTM use for SMTP Protection traffic. I want to set it on another interface.
This thread was automatically locked due to age.