Email Security

I need to have certain senders excluded from a content filter. For the condition which is better for the Sender envelope and what is the big difference in the options. Contains term in content dictionary or Envelope Sender contains or ends With?  

Hi, we have several cases where a message to several recipient (almost a campaign) is sent out from a user (an invitation to an event, usually). Replies to these emails are getting caught by graymail engine as Bulk, and quarantined according to polic...

Hi,   We are migrating our architecture from ESA to CES.   We are wondering how to redirect email traffic from the CES cloud platform to our mail servers in our LAN:   Should we redirect to our public IP with a port translation ?   Should we keep our...

I created a spoofed email policy per this KB https://www.cisco.com/c/en/us/support/docs/security/email-security-appliance/200166-Quarantine-Spoofed-Email-Messages-on-the.html And so far it is working.  But how is spoofed email different from forged e...

We are looking for a way to easily identify emails from external sources coming into our organization for training our employees to handle these external emails with care. Two examples that other finantial institutions are using is one, in the subjec...

Dear All I am start using ironport recently. But found out that it only eble to communicate via 25. It is a none encrypted connection. Can i use encrypted connect between Exchange (my mail server) and ironport? My 2nd question is if i use ironport en...

Hello all, hopefully an easy question here.   I just wanted to get a confirmation that enabling DMARC on the Ironport appliance is going to work the way I envision it working. Assume you have a DMARC compliant domain and it is already in reject mode,...

Hello Support, We have received from Ironport an alert "The Warning message is:   The python was restarted due to an error. A debug file was generated for troubleshooting. Please contact your authorized support center.   Version: 11.0.0-274" Do you h...

Good morning, We are currently running Cisco Cloud Email Security.  Over the past week or 2, we have noticed some slowness with AMP File Analysis scanning.  Previously, it would take 10 - 15 minutes for a scan of an email attachment.  We have a 1 hou...

Hello everyone. I changed my job couple of days ago and getting familiar with system here. I do not have to much experience with email security appliances. What I saw in current ESA deployment that previous workers here added sender with Global IP ad...

For the SMA End User Spam Quarantine we currently let users log in to view/release/delete their spams via LDAP authentication against our Active Directory. This LDAP query looks for all of the user aliases via the proxyAddresses attribute and therefo...