Email Security

HI,I've got some questions about DHAP.My question is that I see in the Mail_Logs that some SMTP servers are blocked because of the dhap_limit (which is 50) for the sender group it is in but when I look in Monitor > Incoming Mail for this spécific add...

HiI have a 4 box cluster and wish to purchase a single certificate to enable TLS useage across all 4 hosts with 3rd parties. The appliances sit behind a load balancer and NAT between 2 MX records. I believe that a wildcarded certificate is required b...

Dear      Can we bypass sender base lookup by recipient address      for example, if the email to send to 123@cisco.com, let this email go through, I know we can set white list to filter e-mail by sender, but how to filter by receiver?

Where can i find hardware end of life information for C150?

I confess, I'm a complete newbie as far as our C160 goes.  We had one in here months ago as a trial for outbound DLP.  When we were finished with it, since it takes months to get $$$ approved sometimes, I saved off the configuration.  I've now loaded...

hi,I have cisco ironport C370. we configured and try to send mail through ESMTP. I got the following errorYour message did not reach some or all of the intended recipients.      Subject:  test mail @ 3:31 PM      Sent:     1/20/2011 3:32 PMThe follow...

Attention:Currently we are experiencing intermittent update failures. We are aware of  the issue and are actively working to resolve.

I have had DLP running in passive mode now for about a week and think  I may have either found a bug or am missing something and it is a limitation for a  reason. While in message tracking, if I leave all fields blank, only change the time range to p...

Hi folks,I ran into an weird situation with testing AD queries, namely Accept and Group query. The thing is that I successfully bind to AD using port 389 and the username in the format DOMAIN\userBut whenever I test "Accept Query" I enter the valid e...

Hello, Cisco IronPort customers that use local AsyncOS upgrade instead of dynamic upgrades will be unable to perform upgrades at this time. We are currently working on a solution that could be implemented by early next week. Note: * By default, Cisco...

Info: New SMTP ICID 3607 interface smtp (x.x.x.x) address y.y.y.y reverse dns host y-y-y--y.zzz.zzzz.net verified noInfo: ICID 3607 ACCEPT SG None match ALL SBRS NoneInfo: ICID 3607 lostInfo: ICID 3607 closeWe try to use a mail server to do SMTP-AUTH...

It looks like to me certain reputation method use the EHLO hostname to match the return-path domain part or the From: domain part.Can I do that customization in C series? Say, via outbound content filter?Or should I just no need to worry about remote...

What is everyone's thoughts/expierence with trying to enforce valid FROM e-mail addresses? I work for an organization of 16,000 users and currently any IT person can write a script to send e-mail FROM any address even an invalid one. The problem th...

Dear Colleagues, Can I configure an Ironport Anti Spam device to quarantine all suspect messages including the ones  rejected/bounced by reputation filtering? By default these are rejected but not stored anywhere and no information  about them is ava...

So I'm looking for some assistance with reporting in terms of seeing how much outbound email is sent encrypted using one of our two encryption policies.  We use a Content Filter that encrypts off of Keyword in Subject Line and we have a DLP Policy in...