From e219eb3d3866460d4230ee0dafb7489941790e50 Mon Sep 17 00:00:00 2001 From: John Poland Date: Fri, 6 Mar 2026 20:33:10 -0500 Subject: [PATCH] fortigate Fri Mar 6 08:33:10 PM EST 2026 --- configs/fortigate/vdom_scsd/firewall.cfg | 25 ++++++++++++++++++++++++ 1 file changed, 25 insertions(+) diff --git a/configs/fortigate/vdom_scsd/firewall.cfg b/configs/fortigate/vdom_scsd/firewall.cfg index 236941b..4d2b007 100644 --- a/configs/fortigate/vdom_scsd/firewall.cfg +++ b/configs/fortigate/vdom_scsd/firewall.cfg @@ -2834,6 +2834,9 @@ config firewall address set comment "used for Day Automation/HVAC notifications" set fqdn "email-smtp.us-east-1.amazonaws.com" next + edit "SheaVLAN230" + set subnet 10.14.230.0 255.255.255.224 + next end config firewall multicast-address edit "all_hosts" @@ -3044,6 +3047,9 @@ config firewall addrgrp edit "NOCTI_Inside" set member "Shea_Secure_Wireless" "Shea_VLAN_6" "Corcoran_VLAN_20" "Corcoran_Secure_Wireless" next + edit "VLAN230AddrGroup" + set member "SheaVLAN230" + next end config firewall wildcard-fqdn custom edit "g-Adobe Login" @@ -5483,6 +5489,25 @@ config firewall policy set ippool enable set poolname "ippool-198.36.23.251" next + edit 127 + set name "DAY-AUTO-EMAIL-ALERTS" + set srcintf "inside" + set dstintf "outside" + set action accept + set srcaddr "VLAN230AddrGroup" + set dstaddr "Amazon SMTP East-1" + set schedule "always" + set service "TCP-587" + set utm-status enable + set ssl-ssh-profile "certificate-inspection" + set av-profile "g-default" + set ips-sensor "Outgoing_IPS" + set application-list "App_Ctrl_1" + set logtraffic all + set nat enable + set ippool enable + set poolname "ippool-198.36.23.251" "ippool-198.36.23.252" "ippool-198.36.23.253" "ippool-198.36.23.254" + next edit 106 set name "Internet Access" set srcintf "inside" "RAP"