Email Security

Cisco Secure Email Upcoming Events

Getting Started with Cisco Secure Email Threat Defense Join us as our experts walk you through some of the fundamentals, key concepts, and outcomes of the Cisco Secure Email Threat Defense product. We will help you gain the insight needed to create a...

Resolved! Backup and restore logs, quarantines cisco ironport c170

Hello,Is there anyway to backup and restore logs and quarantine to another ironport c170? Thanks in advance.Alexandre

Disable and stop using DES and 3DES ciphers on CUC 11.0

Is there any option available to disable DES anf 3DES ciphers in CUC 11.0. Is is possible to do so in this version. Also what will be impact if we disable this.

Resolved! Disable SSH Weak Ciphers

We noticed that the SSH server of Cisco ESA is configured to use the weak encryption algorithms (arcfour, arcfour128 & arcfour256, cbc) and mac algorithms (hmac-sha1 and hmac-md5). My question is: How to disable SHA1 key algorithms?How to disable CBC...

Resolved! All messages in "message tracking" show empty subject (c300v)

Greetings.We are using two c300v servers, and on one of them we cant see subject lines in message tracking (for both incoming and outgoing mail). Messages themselves have valid subjects so its not an issue with mailserver (especially since that happe...

Resolved! ESA blocked file attachment that was not included in content filter

Hi,Is anyone experiencing that ESA is blocking the file/s attachment which are not included in the content filter policy? Like 7z, jar, docx. I only configured to block 4 extension file (ENDS WITH), and still some attachment was hitting this policy. ...

TLS Failed mail logs? and how to rout mail/work queue from ESA to ESA.

Hi,How to check on TLS failed mail logs/TLS connection failures.how rout the WQ from one ESA to other.

What Happen to Mail Queue when Ironport Shutdown

Hi, I want to move our ironport to another Data Center, so we need to shutdown that ironport first. i wanna ask, if I initiate shutdown to Ironport, what happen to mail in the incoming mail queue/work queue, is the message/mail will be flushed/delet...

Disabling TLS v1.0 on IM & Presence

Is there any option to disable TLS v1.0 in CUPS 11.0. If yes then how can this be done. Also what will be the imapact on the current enviroment in case we disavble TLS on the current version. Thanks for the answres!

TLS failed. Reason: (336130329, 'error:1408F119:SSL routines:SSL3_GET_RECORD:decryption failed or bad record mac')

I am getting this error in the mail_logs on just a few incoming connections... After this error the connection is lost and the sending SMTP server is unable to send e-mail to us. Any idea what this is and how I correct it?

Greymail Definitions - Descriptions for Bulk, Social Media?

The greymail options have three categories, BULK, Marketing and Social Media. I am looking for an official description of each and any additional details on how they are identified. I found a Marketing description from an old CISCO technote but I c...

Send email copy to another secure email gateway

Hello, I have FortiMail behind the Cisco ESA and I want all emails received by Cisco ESA send copy (bcc) to FortiMail. Is there a way to achieve this? Thanks.

Resolved! M170 Critical Alert (Version 11.0.0-115)

We get almost every day a critical alert from our M170. We found some similar questions her, but no answers. Is there any solution? The Critical message is: An application fault occurred: ('navigation/HelpBarYUI.py my_tasks_list_submenu|641', "<type ...

Ironport Report View Emails dropped by CASE

Hi Everybody,I am after a way to view emails that were dropped by CASE, is there a way to do this from the reporting enginge? Note: I am using CISCO M680 Thank you!

Resolved! "Relay access denied" ESA 300V message delivery error

Hello. I set up ESA 300V, with one interface and one listener for both incoming and outgoing email traffic.I added RELAYLIST sender group with the IP address of the Forcepoint MTA to the HAT table.When I try to send mail from outside, I receive follo...

Error while sending mails, is the issue is with ESA end need to clarify.

Hi Team, Please, sugget we are getting delivery failre messages as below: DCID 241184384) Message 573258656 to XYZ@hannover-re.com delayed. Reason: 4.1.0 - Unknownaddress error ('403', ['4.7.0 authentication failed']) [('from', 'Lisa Bartosiewicz &...

Email Security

Forum Posts

Cisco Secure Email Upcoming Events

Resolved! Backup and restore logs, quarantines cisco ironport c170

Disable and stop using DES and 3DES ciphers on CUC 11.0

Resolved! Disable SSH Weak Ciphers

Resolved! All messages in "message tracking" show empty subject (c300v)

Resolved! ESA blocked file attachment that was not included in content filter

TLS Failed mail logs? and how to rout mail/work queue from ESA to ESA.

What Happen to Mail Queue when Ironport Shutdown

Disabling TLS v1.0 on IM & Presence

TLS failed. Reason: (336130329, 'error:1408F119:SSL routines:SSL3_GET_RECORD:decryption failed or bad record mac')

Greymail Definitions - Descriptions for Bulk, Social Media?

Send email copy to another secure email gateway

Resolved! M170 Critical Alert (Version 11.0.0-115)

Ironport Report View Emails dropped by CASE

Resolved! "Relay access denied" ESA 300V message delivery error

Error while sending mails, is the issue is with ESA end need to clarify.

Congratulations to the Event Top Contributors Class of 2024!

Cisco + Splunk: It's a new day for your data.

A new chapter of the Spotlight Award begins!

Join us in Celebrating the New Year and the Nov.-Jan. Winners!

Announcing Resources That Guide You to Success

Talos change IP Sender reputation increase from poor status

OpenSSH server (sshd) 9.1 introduced a double-free vulnerability durin

Cissco Ironport "virus detected messages empty"

Modify Cluster configuration Ironport C195

Cisco ESA LDAPS error on Active Directory

How to combine White List Entry - Server AND Mailadress

merge two different clusters into one

What Information SMA Collect from ESA?

mail_logs / E-mails released from quarantine

Weak TLS ciphers detected by a Qualys scan and not used in SSLCONFIG