Email Security

Migrate from Secure Email Virtual C100V to Avoid McAfee-Related Issues

Important: Migrate from Secure Email Virtual C100V Models to Avoid McAfee-Related Issues Dear Valued Customer, We are reaching out to ensure your Cisco Secure Email environment continues to operate at optimal performance and reliability. As worklo...

Resolved! Ironport C370D - OS upgrade "Failed to connect to manifest server"

I am attempting to upgrade my C370D OS from 7.5.1-102 to 8.5.6-092. When trying to get the available upgrades (on both CLI and GUI) I get "Failure downloading upgrade list: Failed to connect to manifest server.". Support Contract is being updated, ...

routing for individual recipient

is there a way to route for a specific address within a domain? EG: domain example.com is routed to mailhost1.example.com but specialuser@example.com gets routed to mailhost99.excample.com Thanks

Resolved! ESA | Sender Policy Framework (SPF).

One of the recommendations from the Analysis Teamis to implement the Sender Policy Framework (SPF). Kindly enlighten us on how this works and how to implement this on our Cisco Ironport. Is there any requirements needed? What are the pro’s and con’s ...

Ironport delivery expired issue

We are running Cisco IronPort AsyncOS 9.7.0 . When trying to send to some domains bounced with Delivery has failed to these recipients or groups. in the Diagnostic information for administrators part I see that this message is generated from the Iron...

Question regarding TLS Version on IronPort

Hello dear support, We have an Email Security Appliance on version 9.7 with TLS encryption activate for outbound/inbound emails. We see that the device accepts all versions of TLS including tls 1.0 which is a version identified as problematicall. I...

ICAP

Hello, is there any possibility to send attachments to an ICAP Service directly from the ESA and stop the Email aslong there comes a score back? If not is it planned and going to be implemented? thanks

Cisco ESA Quaratine File Attachment

Hi all, I'm bloking incoming email with attachments and send them to a quaratine policy, under monitor Policy, Virus and Outbreak Quarantines i'm able to see the email but not the attch file and to be able to edit , after the file is put in quatati...

Cisco ESA Remove Headers From NDR Email MSG

Hi all, I have a customer that wants to remove the following headrs from NDR messagues that are generated on the EXCHANGE server, for exemple from a user that exced the email disk quota and the exchange reject the email X-IronPort-Anti-Spam-Filtere...

anti-SPAM and workqueue filling up

For our customer we have anti-Virus and anti-SPAM enabled for a very long time. Recently I've enable URL Filtering and VOF. After enabling this we had serious problems whenever a legitimate newsletter was received (intended for all employees, appr. 2...

SSLV3 to be disabled and TLS1.2 enabled and end user email with sslv3

Team, customer wants to disable SSL v3 according to the report given by Audit team, C170 in cluster running with 8.5.6 and customer wants to enable TLS 1.2 and to disable SSL V3. If we disable SSL v3 then what could be the impact of receiving the ema...

Resolved! Sending Spam notification mails to all users with restriction in releasing the quarantined messages to specific LDAP group.

We are running Cisco IronPort AsyncOS 9.8.0 and there is integration with active directory. I can send spam notification mails to all users or to specific LDAP group of users and the spam notification mails contain View All Quarantined Messages link...

ESA Number of CONTENT FILTER Limitation

Hi Team, We are having Cisco C390 appliance in our network and would like to know if there is any limitation in Creating the Content filter Rules. Currently there are around 25 content Filter Entries which we created for different security Policies....

Cannot reset my password

Hi, I am having problem with my account credential. I forgot my password so I initiated the "standard forgot my password procedure"....: I clicked the forgot password link from my cisco client windows app. The client app shows a "We sent you a mail ...

Resolved! File Analysis Quarantine Question

hello, We just moved to using the AMP and had a question regarding the quarantine. Currently when files are being checked they are placed into the File Analysis quarantine for 30 minutes then released. Is this with best practice or how should I ha...

Resolved! Reason: 4.1.0 - Unknown address error ('452', ['4.5.3 Too many recipients (AS780090)'])

Hello, I see this message on some messages going from my company to another. Can you confirm this is from the receiving and not my side? Reason: 4.1.0 - Unknown address error ('452', ['4.5.3 Too many recipients (AS780090)']) [ Thanks! Shawn

Email Security

Important Announcements

Cisco Secure Email Add-Ins No Longer Supported on Microsoft Outlook 2019

TLS 1.0/1.1 Deprecation from AsyncOS for Secure Email Gateway, Starting version 16.5

Forum Posts

Migrate from Secure Email Virtual C100V to Avoid McAfee-Related Issues

Resolved! Ironport C370D - OS upgrade "Failed to connect to manifest server"

routing for individual recipient

Resolved! ESA | Sender Policy Framework (SPF).

Ironport delivery expired issue

Question regarding TLS Version on IronPort

ICAP

Cisco ESA Quaratine File Attachment

Cisco ESA Remove Headers From NDR Email MSG

anti-SPAM and workqueue filling up

SSLV3 to be disabled and TLS1.2 enabled and end user email with sslv3

Resolved! Sending Spam notification mails to all users with restriction in releasing the quarantined messages to specific LDAP group.

ESA Number of CONTENT FILTER Limitation

Cannot reset my password

Resolved! File Analysis Quarantine Question

Resolved! Reason: 4.1.0 - Unknown address error ('452', ['4.5.3 Too many recipients (AS780090)'])

False Positive – SharePoint Folder Sharing Email Blocked

0-Day in ESA/SMA CVE-2025-20393

Periodic ESA and SMA configuration file

Config changes sync when reconnecting devices to cluster

Login Link

Need help assessing my level of vulnerability to CVE-2025-20393

ESA: Validating DKIM-Signature failed if signing domain is uppercase

False Positive Email Deleted By Cisco Secure Email Threat Defense

Maximum allowed message size for S/MIM

CES Incoming mail content filter more than one subject