Hi, I have very strange question but I hope that some one will be able to help me here. On the beginning my Cluster Environment composed from 2x Ironport ESA C170. After two years I have decided to extend Cluster with the next two Systems, but CISC...
Forum Posts
Resolved! Csico DLP
Dear all,We are working with Cisco Email and web-security appliances and we are in the process to implement a DLP solution as part of our security portfolio.Thus, we are wondering what can Cisco offer in this regard and whether we can use the current...
Hi Team, I faced these questions during one of the presales calls. Need your views on the following queries. 1. one of the clients has an on-prem Iron port email solution, now they want to integrate this solution with cloud based AMP for email. I...
Resolved! WSA - SMA data synchronization
Hello! I use SMA and WSA appliances. If the connection goes down between the WSA and SMA what is happening with the WSA reports and tracking events? Are these events synchronized to the SMA after the connection repaired? Thanks! Zoltan
In working with a customer, their design uses a pair of C690 ESA appliances with an interface for the DMZ and one internally in a global pool. They only would like external bound email to be masqueraded and all other internal domains will be routed ...
Resolved! Enterprise Security Appliance - Does HAT Whitelist support use of IP address with subnet mask?
HiWe have an external mail provider using multiple servers to send mail on-behalf of our org. Instead of entering multiple entries into the whitelist, i would like to just add the domain part of the ip with /24 subnet mask. is this supported?? Ta Fra...
Resolved! Process for Decommission of ESA 9.1
Hello All, Could anyone please help me the Process to follow, to Decommission our ESA 9.1 Appliance. Thank you. Regards, SP
Hi Guys, We have an Ironport hardware device and we would like to migrate to a VMware Virtual appliance. I have downloaded version 11.0.0.227. I have logged into the CLI on on the Ironport VM and i am trying to run the network setup using the "syst...
Resolved! Ironport able to detect specially crafted email for Exchange Memory Corruption Vulnerability
Hi, everybody. Just yesterday Microsoft announced patches for a series of security vulnerabilities. One of these vulnerabilites is related to Exchange: CVE-2019-0586 – Microsoft Exchange Memory Corruption Vulnerability.This patch corrects a bug in E...
Hello. I want to send a message to quarantine when AMP qualifies it as Malicious. Im able to achieve this using custom header and content filters but it doesn not work with "outbreak filters" - content filters wont start if message is rescanned after...
Cisco ESA AsyncOS 11.1.0-128 Hello Recently we bumped into an issue .. We have a sender group called applicationservers, were we have IP segments in it ( from internal datacenter segments ), example 10.64.0.0/24 etc …. This sender group is assigned ...
Resolved! Safe Unsubscribe
Good Morning, We are currently using the Graylisting and Safe Unsubscribe for a test group of users currently. We are getting ready to deploy to everyone and a couple of questions have come up. 1. Is there a way to "whitelist" a particular addres...
Hi, Is there any option to check or validate whether the recipient domain is valid or not ?And then if domain is invalid, send bounce message to sender email ? Edit :After searching, the bounce message seems must be like this, but i don't see any opt...
Hi everybody, I use a content filter to remove special attachment types, works fine so far. To inform the users about the removed content it is replaced with a file named ATT00001.txt, may I can choose a more informative name for that file? Like "Att...
Hi, Kindly, I need help in downloading the Cisco SMAv QCOW2 image for deployement on KVM platform as it is not available in the download section. Thank you!
