You can configure email alerts for System,
Config, HIP Match, Correlation, Threat, WildFire Submission, and
Traffic logs. You can use separate profiles to send email notifications
for each log type to a different server. To increase availability,
define multiple servers (up to four) in a single profile.
As a best practice, configure transport layer
security (TLS) to require the firewall to authenticate with the
email server before the firewall relays email to the server. This
helps prevent malicious activity, such as Simple Mail Transfer Protocol
(SMTP) relay, which can be used to send spam or malware, and email
spoofing, which can be used for phishing attacks.