Important: Migrate from Secure Email Virtual C100V Models to Avoid McAfee-Related Issues Dear Valued Customer, We are reaching out to ensure your Cisco Secure Email environment continues to operate at optimal performance and reliability. As worklo...
Forum Posts
Resolved! Custom Bounce Message II
Hello @All,This question has been asked before. However, the proposed solution does not seem to work.https://community.cisco.com/t5/email-security/custom-bounce-message/td-p/5136251If the "bounce()" action is triggered via a message filter, this text...
Resolved! ESA DKIM Signing Keys
Using a Cisco ESA (C100V). Can I add a new domain profile to an existing signing key or do I need to create a new signing key for the new domain? Do I have to export the signing key again if I can add the domain to the existing key?I created a new s...
Hello Guys,Is it possible that Cisco ESA will scan the Internal/Local mails as well?For example, Alan and Jack both are working for the same company xyz and their Exchange server domain is xyz.com.Suppose Alan sent an email from his mail-id (alan@xyz...
Resolved! Recover Messages with ETD
Hi! Is there any way for Cisco ETD (Email Threat Defense) to retrieve messages that have already been delivered and read by users?
Hi,My end is using Secure Email Gateway Virtual C300V Version: 16.0.0-050. Our end user reported that she got a 2FA email with subject added "SPAM" unexpectedly.Checked with other internal user, he also got those 2FA emails from same source but no su...
Hello,It is also the same behavior if 2 admins work on the same Quarantine (same than 2 tabs for one admin).We are waiting for a fixRegards,
Resolved! Add New Ironport Cluster Member
When we add new ironport cluster member that using NAT, the new member communicate using real ip rather that NAT IP. In clusterconfig > COMMUNICATION, i can change the ip that used for cluster communication. When i change the IP address do i need to ...
The Warning message is: The mcafee was restarted due to an error. A debug file was generated for troubleshooting. Please contact your authorized support center.Version: 13.0.5-007Serial Number: 9CD57D419786-WMP260100TNTimestamp: 29 Jun 2025 14:35:00 ...
Hello,since 30.07.25 i get the following warning message daily: "Failed to retrieve certificate and key from the Cisco Talos certificate service."The actual used version is 16.0.2-112.I hope somebody can help me in this case.
Hello fellow community members,During a packet capture on C395 gateway appliance I detected that, released emails from SPAM Quarantine on M395 manager appliance, are not actually being released. Released emails from Policy Quarantine are being releas...
Hello community, We configure Iron port to send information mail logs to SIEM (IBM Qradar) using syslog. The configuration is working normally and we can see the logs in the SIEM. The problem that we have is that we start to receive an Critical m...
Get the following warning as mail alert, but can' find anything in Log-Files:The mcafee was restarted due to an error. A debug file was generated for troubleshooting. Please contact your authorized support center.Does anyone knows, what to do?
Resolved! Cisco ESA Suspected URL
Dear all. I configured url filtering and added -5 -3 (Custom Range) for Suspected url. But some emails (with legitimate urls inside it) get blocked by esa due to newly created suspected url content filter. Could you please tell me how can I see the e...
We are experiencing an issue with our Cisco Email Security (CES) appliance where some inbound emails are being processed as outgoing. As a result, these messages are not evaluated by the correct policies (e.g., antispam or sender authentication for i...
Observation: Microsoft has changed something and started rejecting valid DKIM signed emails. I've observed O365 and hotmail.com bouncing mails. To fix: Set each of your dkim signing profiles setting > Canonicalization values to "Relaxed. This makes t...
