This article describes that the File Filter profile is not able to block outgoing SMTP emails.
Scope
FortiGate v7.0 and above.
Solution
There are instances where SMTP ports are used other than the default port 25. STARTTLS uses port 587 and SSL/TLS uses 465 depending on the server.
FortiGate may not inspect these ports. The profile-protocol options would need to include these ports.
config firewall profile-protocol-options edit "SMTP-25_465_587" set comment "All default services." config smtp set ports 25 465 587 set options fragmail splice end next end