Email Security

Cisco Secure Email Upcoming Events

Getting Started with Cisco Secure Email Threat Defense Join us as our experts walk you through some of the fundamentals, key concepts, and outcomes of the Cisco Secure Email Threat Defense product. We will help you gain the insight needed to create a...

Finding the Sender

Is it possible to find the email sender ip address in Ironport logs?We recently had a virus outbreak, an infected computer -that no one could finde - was sending out email. Locating the computer would help this situation out.

Received Critical message

Could you please help on the below message is about The Critical message is: An application fault occurred: ('shared/UserPreferences.py getReportSections|106', "<type 'exceptions.AttributeError'>", "'str' object has no attribute 'get'", '[util/Aq...

Interface selection for outgoing notifications

Hi We have several external IP addresses on our IronPorts. If we send out notifications (by a message filter using notify())AsyncOS automatically selects the lowest available address. Can this be influenced in any way? (setting deliveryconfig to ...

Addresslists

Hello, I am just wondering how to add a maildomain and all subdomains to an addresslist. For the HAT I can add .example.com for all servers in that domain and all subdomains, but for the addresslists I need that "@". So a @example.com is only the m...

Malware disposition changes to Unknown randomly

Hi, We have deployed ASA since last few months, everything is working fine, but we have observe that sometimes if a file is declared Malware disposition from Cisco Cloud, it randomly changes to 'unknown' and that malicious file passed on to internal ...

Resolved! LDAP group query

Hi there, I have one question concerning ldap group querys. At which time the group query are executed? Just when they are used ( I use them on message filters) or is there a separate "pipeline" like LDAP Accept or Routing query? If they are executed...

Critical Error clarification C370ESA ?

Hi Team, Could you please clarify the below Error description? what will be the impact? and the steps to minimize the impact as well. The Critical message is: An application fault occurred: ('navigation/HelpBarYUI.py my_tasks_list_submenu|639', ...

Resolved! How to interpret this warning on ESA C170

Hello guys, on our ESA C170 we get this error message: Warning Directory Attack Prevention Potential Virus Attack detected Expiry of a KEY in 190 days How to interpret it and what actions are needed? Thanks, Vesko

Resolved! ESA quarantine forward mail

Hello, I have a customer that want to send mails that have been quarantined to himself, to his own mailadress. He would like to "view" them before releasing them. Is that possible?

ESA false positives and SPAM verdict

A customer of mine thinks there is a lot of false positives regarding their current ESA solution. Version is/was 9.7.X. Also, they would like to now why a mail is classified as SPAM not just the SBRS.

ESA - text resource

Hello, I have a customer that is using "text resource". This seems to burden the system or att least the text resource feature. Does anybody have the same problem?

Test Virtual Email Security with Two Exchange 2010 Internally

i installed Active directory 2088R2 with exchange server 2010 1) first exchange server (mail.x.com) vlan 40"192.168.40.245" i want to use it as internally 2) second exchange server (mail.y.com) vlan 42"192.168.42.245 i want to use it as ...

What happens to block listed address/IP/domain mails?

Hi Team, i would like to know, is any notification will be send to sender "or" recipient if we block list an address/IP/domain on our ESA?

Resolved! ESA Sytem Messages

Does anyone know what doc or where I can find a list of system messages specifically for Cisco ESA's? I need to import them into a SIM and I need the list for parsing and alerting setup. Can't seem to find this. Thank you,

Whats EMZ files and can it be removed from compressed file detection?

We recently turned on an incoming mail filter to send emails containing executable and compressed file attachments to a quarantine policy and it notifies the end user to contact IT to release the message if they are expecting it. The notification em...

Email Security

Forum Posts

Cisco Secure Email Upcoming Events

Finding the Sender

Received Critical message

Interface selection for outgoing notifications

Addresslists

Malware disposition changes to Unknown randomly

Resolved! LDAP group query

Critical Error clarification C370ESA ?

Resolved! How to interpret this warning on ESA C170

Resolved! ESA quarantine forward mail

ESA false positives and SPAM verdict

ESA - text resource

Test Virtual Email Security with Two Exchange 2010 Internally

What happens to block listed address/IP/domain mails?

Resolved! ESA Sytem Messages

Whats EMZ files and can it be removed from compressed file detection?

On-Demand Webinar: B&M Security Transformation with Cisco XDR

Congratulations to the Event Top Contributors Class of 2024!

Knowledge Hub: Cisco Technology for Securing the Enterprise

Cisco + Splunk: It's a new day for your data.

Announcing Resources That Guide You to Success

Escape & character in params using HTTP Request in XDR Workflow

Trusted Root Certificate Update - strange names

CES swap memory threshold alerts

IronPort C300V Alert

SMA problem upgrade

CISCO ESA de-commission queries

First Installation Virtual ESA 15.5.1

Ironport license name

Text Resource - Disclaimer Template Please enter content

CES integration query