Important: Migrate from Secure Email Virtual C100V Models to Avoid McAfee-Related Issues Dear Valued Customer, We are reaching out to ensure your Cisco Secure Email environment continues to operate at optimal performance and reliability. As worklo...
Forum Posts
Resolved! ESA View Email
We are currently investigating ESA as a possible upgrade from our current solution. One question came up by the security team. In the current solution they have, they are able to view an email inside the GUI of there current solution for security pur...
Resolved! ESA URL filtering
Hi, I received an email containing a phishing attack. When I examined the url in the mail, my e-mail address was also written in the url. This is often used in phishing attacks. When you go to the page, you will see that your e-mail address is writte...
HiI want to create a content filter which detect unwanted URL's based on reputation and one filter based on URL category.These messages must be changed as follows,redirect URL's to the web security proxy,change subject with a warning andredirect mess...
Hi community,I recently switched to Smart account/licensing for one customer's ESA cluster. They have 1000 mailboxes license. After provisioning and authorizing the appliances I see in Cisco Smart account for the relevant features only 2 in use and t...
Dear Community,Just a simple question, is it possible to download the update tar file for the C190 email appliance in a Windows environment?From updates.ironport.com how can I reach the manifest.xml file?Thanks
Resolved! Anti-Spam threshold impact
Hello, In this documentation about ESA https://www.cisco.com/c/en/us/support/docs/security/email-security-appliance/118220-technote-esa-00.html#:~:text=Reduce%20Suspected%20Spam%20Threshold%20to,at%20the%20'suspect'%20threshold. It is recommended t...
Hello, Cisco AMP for ESA seems to be a great tool to detect malware in attachments.I don't find any detailled technical documentation about the treament procedure of emails for sandboxing on Cisco servers.I want to find among others the following inf...
Hi, I have a need to configure a notification that a message has been released from quarantine. Currently I cannot find a trigger point to send a notification to the original sender that his messages has been released, or that a message has been move...
Hello, Lately we receive mails with the below attachment. This is recognized as gzip and executable file and is therefore blocked by our mail filters. .emz.wmz.mso How to skip these filetype? Thanks.
Resolved! Block Attachments by File Type
We have requirement where we want to block emails with attachment type :.ade .cmd .eml .ins .mdb .mst .reg .url .wsf .adp .com .exe .isp .mde .pcd .scr .vb .wsh .bas .cpl .hlp .js .msc .pif .sct .vbe .bat .crt .hta .jse .msi .pl .scx .vbs .chm .dll ....
Resolved! Problemens updating Sophos
Hi,I have 2 Cisco C170 on diffrent site's. Both of them stopt on the same day with being able to update the Sophos definitions. This was on December 8 2021. They both run version 11.0.4-004 and have an valid Feature Keys. If I run avupdate force I ge...
Setting up completely new ESA I added the domain in RAT table and configured routing. There is no LDAP or SMTP call ahead configured as of now but when sending email to the email domain or even complete address configured in the RAT I'm always gettin...
Message filter syntax for Quarantine and Continue, with x header condition.
Hello,recently there was an issue the DNSSEC settings in our DNS Zone were inactive. It was solved after a few hours. Afterwards we did get reports some (not all) external organizations were unable to send messages to our organization.Apparently some...
Hello Team, Could you please share the process for Cisco Email Security Compliance License renewal process. Or If possible please schedule a call to so that i can explain about our environment and i will get my queries clarified. Thanks & RegardsAdo...
