Email Security

Migrate from Secure Email Virtual C100V to Avoid McAfee-Related Issues

Important: Migrate from Secure Email Virtual C100V Models to Avoid McAfee-Related Issues Dear Valued Customer, We are reaching out to ensure your Cisco Secure Email environment continues to operate at optimal performance and reliability. As worklo...

MessageSize - IronPort reports

I am trying to get message trace reports from Ironport - SMA-M1060-K9 centralized reporting server for one month which message size of each messages however, message-size is not captured when the logs are exported. Is there any chance to get message-...

Resolved! Modify %new_quarantine_messages%

Hello,We would like to remove this link: "https://www.cisco.com/c/en/us/support/docs/security/content-security-management-appliance/214391-administrative-details-on-trailblazer.html" from the %new_quarantine_messages%. Is this possible? (ESA)Thanks,B...

Resolved! Admin logs to monitor all the changes done in ESA

We have a situation wherein we want to see who accessed the Ironport ESA appliance and did a configuration change. Would we be able to do it? or Can Cisco Support can find it out from backend?

What type of user(Normal/ Domain Admin) is required for configuring LDAP server profile in IronPort device? Please also share a reference document.

Cisco ESA cluster behind F5 load balancer for inbound emails

Hello All, One of our customer has 2 Cisco ESAs running in a cluster. Currently they have two MX records published in public DNS with same preference (say 10). The customer has F5 load balancer and now they are asking whether it is possible to place ...

Upgrade Path for Cisco Ironport Virtual Appliance

Hello Guys, We are looking to upgrade Cisco Ironport ESA from 11.0.0-264 to the latest. Upon checking the release notes and latest versions, we found that 13.0.0-392- GD is latest one.Where can I find the correct upgrade path to arrive at the target ...

Resolved! ESA not Communicating with the Update Server

For the last two days days, I've been getting this email from our ESA appliance. The Warning message is:The updater has been unable to communicate with the update server for at least 1h.Last message occurred 8 times between Thu May 28 21:25:22 2020 a...

Server being rejected on mail deliver

Hi,i've tried to find a solution for this problem everywhere but i couldn't, so this is my last hope.I'm a server admin and i have several clients hosted at my server, its a cpanel server, very common, one of my clients is trying to send messages to ...

Change SMTP port from 25 to 465 with TLS enabling

Hi, I am new on ESA. I would like to have more understand the email flow on the SMTP with TLS enabled. The exchange 2010 is currently using port 25. If I would like to change from port 25 to 465, and enable the TLS inbound and outbound, the below ...

external thread feed data expiration?

Hi all, I've searched the doc and the forum but did not see a clear answer on this.What is the retention policy of the data from the external feed? or is there one by age or size? The feed configuration "Age of Threat Feeds" and "Time Span of Poll Se...

Resolved! ESA/SMA limited Updates Available

Hello, our both products ESA - 13.0.0-392SMA - 13.0.0-249 or not receiving the latest upgrades. ESA suggests 13.0.1, SMA does not suggest anything. I already found the following article:https://community.cisco.com/t5/email-security/esa-not-communicat...

Reset connection whenever Max. Recipients Per Message exceeds threshold

Dear all, I am very well aware of the fact that whenever a sending MTA attempts to deliver a message on Cisco ESA that exceeds the threshold of "Max. Recipients Per Message" which defaults to 50, then it receives a "452 #4.5.3 Too many recipients." ...

Resolved! Configure Outgoing Email from Office 365 to Cloud Email Security CES Outgoing Listener

Hi!I am following this document to configure outgoing email from O365 to CES - https://www.cisco.com/c/en/us/support/docs/security/cloud-email-security/214812-configuring-office-365-microsoft-with.html#anc8 Is there something I am missing about the O...

Zone based firewall block smtp

i dear friends, i have exchange server 2016 and this server connect to internet via cisco router 2911, when users send mail with attachment these mail stay in queue exchange server.but when i turn of zone based firewall mails send normaly.help plz.ho...

Limit terms in Dictionaries or senders in Blacklist HAT

Hi Team Please let me know how many senders we can add in the Blacklist´s HAT. We had an issue by the cantity of terms added to dictionaries (domains to block) it was a lot, and it increase the CPU´s use. We had delay on mail procesing and increase o...

Email Security

Important Announcements

Cisco Secure Email Add-Ins No Longer Supported on Microsoft Outlook 2019

TLS 1.0/1.1 Deprecation from AsyncOS for Secure Email Gateway, Starting version 16.5

Forum Posts

Migrate from Secure Email Virtual C100V to Avoid McAfee-Related Issues

MessageSize - IronPort reports

Resolved! Modify %new_quarantine_messages%

Resolved! Admin logs to monitor all the changes done in ESA

What type of user(Normal/ Domain Admin) is required for configuring LDAP server profile in IronPort device? Please also share a reference document.

Cisco ESA cluster behind F5 load balancer for inbound emails

Upgrade Path for Cisco Ironport Virtual Appliance

Resolved! ESA not Communicating with the Update Server

Server being rejected on mail deliver

Change SMTP port from 25 to 465 with TLS enabling

external thread feed data expiration?

Resolved! ESA/SMA limited Updates Available

Reset connection whenever Max. Recipients Per Message exceeds threshold

Resolved! Configure Outgoing Email from Office 365 to Cloud Email Security CES Outgoing Listener

Zone based firewall block smtp

Limit terms in Dictionaries or senders in Blacklist HAT

False Positive – SharePoint Folder Sharing Email Blocked

0-Day in ESA/SMA CVE-2025-20393

Periodic ESA and SMA configuration file

Config changes sync when reconnecting devices to cluster

Login Link

CSCws36549 - Reports About Cyberattacks Against Cisco ESA and SMA

Need help assessing my level of vulnerability to CVE-2025-20393

ESA: Validating DKIM-Signature failed if signing domain is uppercase

False Positive Email Deleted By Cisco Secure Email Threat Defense

Maximum allowed message size for S/MIM