Email Security

Migrate from Secure Email Virtual C100V to Avoid McAfee-Related Issues

Important: Migrate from Secure Email Virtual C100V Models to Avoid McAfee-Related Issues Dear Valued Customer, We are reaching out to ensure your Cisco Secure Email environment continues to operate at optimal performance and reliability. As worklo...

The updater could not validate the server certificate.

HiAfter upgrading the Iron Port c380 to the 9.1.0-032 version, I receive this warning by email "The updater could not validate the server certificate. Server certificate not validated - self signed certificate in certificate chain", do I need to re...

Increased malware in DOC macros

Good Morning, We are currently seeing a massive increase in malware contained in Word Document macros, these are dropping through the ESA until CASE catches up, and there are no AV signatures for these files at the time of drop.I've analysed these fi...

Cisco vESA updates

Hi I migrated from C170 to C100v, I have problems with antispam updates, according to document: http://www.cisco.com/c/en/us/support/docs/security/email-security-appliance/118065-maintainandoperate-esa-00.html I should change dynamichost to: update...

Resolved! ESA AsyncOS 7.6.2-014 | Filter non valid domain and address

Hello, Please need your help. I'm having trouble with my email filter appliance that is receiving email from non valid domain, and because of my lake of knowledge about the product it self, I need advice how do I can stop this problem. the test that ...

Impact of enabling end-user quarantine access

Our C170 generally ticks along without incident - an average queue length lower than 1 with peaks of up to 45 and more typically 25. During the same period its CPU hovers between 10 and 15% overall usage with swapping peaking at 27.On such a system, ...

Anyone Using Adaptive Rules within Outbreak Filters?

After recently configuring URL logging on our IronPorts, I realized that we do not currently have Adaptive Rules configured as part of our Outbreak Filters. I'm curious if anyone has this enabled and whether it has proven effective in catching outbre...

Resolved! In ESA i want to block all spams , but this emails will be delivered to one email account as reference

Hi,Can any one help me to configure spam prevention in ESA, so that i can drop the spams and one copy of the spams will be delivered to one email address? RegardsMithun Dey

Resolved! Undeliverable: - Cisco C170 - 5.4.7 - Delivery expired (message too old) [Default] '[Errno 54] Connection reset by peer' (delivery attempts: 75)

Users just started having issues sending group emails of 10 recipients or more to outside email addresses. Internal emails working fine. But any going to outside address like gmail, yahoo, hotmail and others all come back Undeliverable 5.4.7... They ...

Blocking rar in ESA

Hello, I've created a content filter to block rar file.I've tried to use this conditionsAttachment File Info / Filename: Ends with .rarAttachment File Info / File Type is rarWith Action as Quarantine / and notify User=> The attachment is still going ...

Problem with local update server anti virus and anti spam update

We have a couple of Ironport devices on a closed network without Internet access. I have been attempting to get anti-virus and anti-spam updates onto them, but have not succeded. I have a guide that have been written for us that involves downloading ...

Resolved! After upgrading to ESA 9.6: SSL routines:SSL3_GET_CLIENT_HELLO:no shared cipher

Hi After upgrading to ESA 9.6 all email from google/gmail failed with "SSL routines:SSL3_GET_CLIENT_HELLO:no shared cipher" in the log. In the config i have "RC4-SHA:RC4-MD5:ALL" ciphers. This is the default settings, since I never have changed anyth...

Can you replace a C660 with a C380 configuration

we have multiple ESA appliances so it makes sense to replace one of the C660s with a smaller C380, having said that is it possible to simply export the configuration off of the old C660 and import it in to the new C380, assuming we will keep the same...

Resolved! URL Filtering

When enabling URL Filtering, will this be used by the Anti-Spam engine to catch additional spam based on url reputation, or does it only work with Outbreak filters and any custom content filters created?

Resolved! Migrate configuration from C360 to virtual appliance

Is it possible to migrate configuration from a C360 to a C100V virtual appliance?When we exported/imported the configuration we got errors when importing into the C100V (running 9.6). Is there anyway to get the configuration to work without having to...

does Ironport replication automatic?

Dear allI have 2 Ironport (main and backup) Web ESA-C170-K9 and 100 ESA-ESI-LIC= that i will configurreI want to know if configuration replication is automatic; do i need to configure each applicance or is it possible to do all configuration in the m...

Email Security

Important Announcements

Cisco Secure Email Add-Ins No Longer Supported on Microsoft Outlook 2019

TLS 1.0/1.1 Deprecation from AsyncOS for Secure Email Gateway, Starting version 16.5

Forum Posts

Migrate from Secure Email Virtual C100V to Avoid McAfee-Related Issues

The updater could not validate the server certificate.

Increased malware in DOC macros

Cisco vESA updates

Resolved! ESA AsyncOS 7.6.2-014 | Filter non valid domain and address

Impact of enabling end-user quarantine access

Anyone Using Adaptive Rules within Outbreak Filters?

Resolved! In ESA i want to block all spams , but this emails will be delivered to one email account as reference

Resolved! Undeliverable: - Cisco C170 - 5.4.7 - Delivery expired (message too old) [Default] '[Errno 54] Connection reset by peer' (delivery attempts: 75)

Blocking rar in ESA

Problem with local update server anti virus and anti spam update

Resolved! After upgrading to ESA 9.6: SSL routines:SSL3_GET_CLIENT_HELLO:no shared cipher

Can you replace a C660 with a C380 configuration

Resolved! URL Filtering

Resolved! Migrate configuration from C360 to virtual appliance

does Ironport replication automatic?

False Positive – SharePoint Folder Sharing Email Blocked

0-Day in ESA/SMA CVE-2025-20393

Periodic ESA and SMA configuration file

Config changes sync when reconnecting devices to cluster

Login Link

Need help assessing my level of vulnerability to CVE-2025-20393

ESA: Validating DKIM-Signature failed if signing domain is uppercase

False Positive Email Deleted By Cisco Secure Email Threat Defense

Maximum allowed message size for S/MIM

CES Incoming mail content filter more than one subject