Monitoring the system
The Monitor menu displays system usage, mail queues, log messages, reports, and other status-indicating items.
It also allows you to manage the contents of the mail queue and quarantines, and the sender reputation and endpoint reputation scores.
This section includes:
- Viewing overall system statuses
- Managing the deferred mail queue
- Managing the quarantines
- Viewing the greylist statuses
- Viewing the sender reputation statuses
- Viewing the endpoint reputation statuses
- Managing archived email
- Viewing log messages
- Viewing generated reports
Viewing overall system statuses
Monitor > System Status displays system statuses, most of which pertain to the entire system, such as CPU usage and current IP sessions. It also displays items that span multiple features, such as email statistics.
This section includes:
- Viewing the dashboard
- Viewing the email statistics
- Viewing the list of current IP sessions
Viewing the dashboard
Monitor > System Status > Status displays first after you log in to the web UI. It contains a dashboard with widgets that each indicate performance level or other statistics.
By default, widgets display the serial number and current system status of the FortiMail unit, including uptime, system resource usage, alert messages, host name, firmware version, system time, and email throughput.
To access this part of the web UI, your administrator account’s:
- Domain must be System
- access profile must have Read-Write permission to the Others category
For details, see “About administrator account permissions and domains” on page 290.
To view the dashboard, go to Monitor > System Status > Status.
Page 173
Hiding, showing and moving widgets
The dashboard is customizable. You can select which widgets to display, where they are located on the tab, and whether they are minimized or maximized.
To move a widget, position your mouse cursor on the widget’s title bar, then click and drag the widget to its new location.
To show or hide a widget, in the upper left-hand corner, click Add Content, then mark the check boxes of widgets that you want to show.
Options vary slightly from widget to widget, but always include options to close or minimize/maximize the widget.
System Information widget
The System Information widget displays the serial number and basic system statuses such as the firmware version, system time, and up time and high availability (HA) status.
In addition to displaying basic system information, the System Information widget lets you configure the operation mode and to change the firmware.
To view the widget, go to Monitor > System Status > Status. If the widget is not currently shown, click Add Content, and mark the check box for the widget.
Figure 65:System Information widget
Table 12:System Information widget features
GUI item |
Description |
Serial number |
Lists the serial number of the FortiMail unit. The serial number is unique to the FortiMail unit and does not change with firmware upgrades. |
Up time |
Lists the time in days, hours, and minutes since the FortiMail unit was started or rebooted. |
System time |
Lists the current time according to the FortiMail unit’s internal clock. |
Firmware version |
Lists the version of the firmware installed on the FortiMail unit. Click Update to change the firmware. For more information, see “Installing firmware” on page 688. |
Table 12:System Information widget features
GUI item |
Description |
Operation mode |
Select one of the following operation modes of the FortiMail unit:
• Gateway: Use when you do not want your email server to be visible to email users for security reasons. You will need to modify the email clients of your email users, the MX records on DNS servers for your protected domains, and policies on NAT devices such as routers and firewalls to route incoming email through the FortiMail unit for it to be scanned.
• Server: Use if you need an SMTP server with integrated advanced antispam and antivirus capabilities.
• Transparent: Use when a network is complex and you do not want to change the IP address scheme.
Administrators whose Domain is System and whose access profile contains Read-Write permission in the Others category can change the FortiMail unit from one operation mode to another.
Caution: Operation modes reflect the nature of the network topology in which you deploy the FortiMail unit, and other considerations. A significantly different deployment may be required, especially for transparent mode.
Caution: Back up the configuration before beginning this procedure. This procedure may reset many of the configuration file changes that you have made to the FortiMail unit, including settings that do not apply to the new operation mode. For more information on creating a backup, see “Backup and restore” on page 218.
Note: If the FortiMail unit is operating in gateway mode, you must configure the MX record of the DNS server for each protected domain to direct all email to this FortiMail unit instead of the protected SMTP servers. |
HA mode |
Lists the configured and effective (that is, current) HA operation mode.
For more information, see “Monitoring the HA status” on page 313. |
Log disk |
Lists the capacity and usage level of the hard disk that the FortiMail unit uses to store log messages.
For more information on logging, see “About FortiMail logging” on page 665. |
Mailbox disk |
Lists the capacity and usage level of the hard disk that the FortiMail unit uses to store archived email and quarantined spam.
For more information on quarantining and email archiving, see “Configuring antispam action profiles” on page 516 and “Configuring email archiving policies” on page 660.
For information on using the advanced mode of the web UI to configure the
RAID level of the mailbox disk, see “Configuring RAID” on page 298. |
Email throughput |
Lists the total number of email messages processed per minute, as an average over the last 60-minute period. |
License Information widget
The License Information widget displays the last queried license statuses for FortiGuard Antispam and FortiGuard Antivirus.
If you do not want to allow the FortiMail unit to automatically download antivirus definition updates from the FortiGuard Distribution Network (FDN), you can also use the
License Information widget to manually upload an antivirus definitions update file. To upload the file, first download the antivirus definition file to your management computer from the Fortinet Technical Support web site, https://support.fortinet.com, then click Update.
If your update is a downgrade to a lower antivirus definition, you need to enable this function in the CLI. For more information, see the diag debug autoupdate command in the FortiMail CLI Reference.
Updating FortiGuard Antivirus definitions can cause a short disruption in the traffic currently being scanned while the FortiMail unit applies the new signature database. To minimize disruptions, update when traffic is light, such as during the night.
To view the widget, go to Monitor > System Status > Status. If the widget is not currently shown, click Add Content, and mark the check box for the widget.