Email Security

Migrate from Secure Email Virtual C100V to Avoid McAfee-Related Issues

Important: Migrate from Secure Email Virtual C100V Models to Avoid McAfee-Related Issues Dear Valued Customer, We are reaching out to ensure your Cisco Secure Email environment continues to operate at optimal performance and reliability. As worklo...

Resolved! Can Ironport handle RAR files?

We're starting to get malicious content embedded in RAR files attached to emails. This shouldnt be a problem as we have a policy to quarantine any emails with executable attachemnts coming in.It appears that, although the Ironport recognises the .ra...

Ironport - Incoming and Outgoing relay

Hi,for my understanding:1) incoming mails and outgoing mails will be classified by the HAT2) HAT entry with relay decision classifies as "outgoing"Now my problem: i am using the same relay server for incoming and outgoing messages. So, my ironport ge...

Resolved! Replace the body of e-mail

Hello,Can I use the command edit-body-text to replace the entire contents of the body of an e-mail?What I'm looking to do in a message filter is replace the contents of an e-mail without caring whats in there already.I just want to overwrite it with ...

Mail Flow Policy match to Quarantine.

I have recently created a new Mail Flow Policy which is added to a new HAT entry.Is there a way to quarantine mails picked up by the Mail Flow Policy for review before release?

IRONPORT e-mail security, encrypted e-mails problem

Hi there, we have recently purchased CISCO Ironport E-mail and web security devices. I have configured e-mail security, and I want to encrypt an outgoing e-mail. When I send that e-mail I receive a reply:#< #5.0.0 smtp; 5.x.3 - PXE Encryption failure...

Resolved! Not receiving mails from same domian as showing in ESA (Ironport)

Hi, In Cisco ESA i am able to see mails delivered to user from example@xyz.com, but in his mail box sender domain showing different example@abc.com, same i have checked with exchange team to know the sender domain but in exchange server also it is sh...

Cisco Email IronPort is not sneding email to outside [Errno 61] Connection refused

Dears, I have deployed new ESA C170. for incoming emails it works normally. But when we send email to most of domains like yahoo, hotmail, gmail...etc, the email get stuck and tracking shows ( queued for delivery). Mail logs show the following error:...

Ironport Capacity

Can anyone point me to information about Ironport capacity?

Virtual ESA appliance update and upgrade using static method

What are the static servers for updates and upgrading if you are using a virtual appliance ?I know that the if you use a standard appliance they are:downloads-static.ironport.com: 208.90.58.105 on port 80update-manifests.ironport.com: 208.90.58.5 on ...

ESA Attachment Whitelisting

We have some new ESAVs installed and currently testing some content filtering, we are using version 8.5.5 build 280.We have a number of other ironport devices installed so I thought I would reference how we have done it in the past with attachment fi...

sourcefire AMP for email

Hello,we have presently cisco Ironport web and email appliances and we are planning to implement Cisco next generation firewall with Cisco FirePOWER IPS, AMP and URL license for the IPS. So my question is regarding cisco's ironport email. May be my q...

Resolved! Incoming Mail Policy is not working - SPAM quarantine

I have configured a Mail Policy that has the Antispam disabled. I have done this because of an specific mail user that wants to receive all the emails, including the ones the ESA consider spam.I usually works fine but now I have 4 emails in the spam ...

OutboundTLS Required but RSA encyption if it can't

Hello, can we configure the Ironport to require all outbound connections to be TLS and if it cannot use TLS because the receiving host does not have it then it will send using the RSA encryption product inside of IronPort?I can see where I can change...

Issue sending e-mails to certain domain

I'm having an issue sending e-mails to domain capitaliii.com from my Ironport. I see the following message in the Ironport log."DNS Temporary Failure capitaliii.com MX - unable to reach nameserver on any valid IP"When I issue a nslookup on the MX re...

Delete save configuration files in /configuration folder

How to delete the historic stored (generated by our ssh script) configuration files in /configuration folder on Ironport appliance? thanks. Leo

Email Security

Important Announcements

Cisco Secure Email Add-Ins No Longer Supported on Microsoft Outlook 2019

TLS 1.0/1.1 Deprecation from AsyncOS for Secure Email Gateway, Starting version 16.5

Forum Posts

Migrate from Secure Email Virtual C100V to Avoid McAfee-Related Issues

Resolved! Can Ironport handle RAR files?

Ironport - Incoming and Outgoing relay

Resolved! Replace the body of e-mail

Mail Flow Policy match to Quarantine.

IRONPORT e-mail security, encrypted e-mails problem

Resolved! Not receiving mails from same domian as showing in ESA (Ironport)

Cisco Email IronPort is not sneding email to outside [Errno 61] Connection refused

Ironport Capacity

Virtual ESA appliance update and upgrade using static method

ESA Attachment Whitelisting

sourcefire AMP for email

Resolved! Incoming Mail Policy is not working - SPAM quarantine

OutboundTLS Required but RSA encyption if it can't

Issue sending e-mails to certain domain

Delete save configuration files in /configuration folder

Changes to URL reputation scoring

quarantine notification - questions

Dkim validation error

Migrate ESA Cluster to new Hypervisor

certificate in onpremises ESA and TLS

CES - SDR

Cisco ESA Cloud Gateway C100v grep for user who blacklisted domain

ESA Destination Control | Subdomains or Wildcards

attachment group executable and filetype .java

Cloud CES and onpremises ESA