06-24-2019 06:05 AM
Dear all. yesterday I configured External Threat Feed in cisco esa. In order test it I send malicious url from my personal email to corporate email. that email directly send to Outbreak quarantine and approximately 1 hour later that email released from quarantine and forwarded to corporate email along with SUSPICIOUS warning message. Now I have 2 questions
1. Why malicious link forwarded to corporate email instead of being blocked?
2. How can I test whether External Threat Feed functionality works or not.
I would be thankfull if you help me to solve this questions
06-24-2019 07:10 AM
06-24-2019 09:51 AM
Thanks for your reply. Could you please tell me how can i test External threat feed? Actually i configured external threat feed and content filter that will be triggered when someone send me email which constitute malicious email inside it. But only outbreak filter catchs it not ETF. So how can i test ETF? How can i proof that ETF works as expected?
06-24-2019 12:32 PM
Look at the adming guide page 9 onwards to configure ExternalThreat Feeds
06-24-2019 12:46 PM
I configured etf from the same documentation you sent. But not able to test whether it works
06-24-2019 12:48 PM
I configured etf from the same documentation you sent. But not able to test whether it works..
06-24-2019 12:48 PM
06-24-2019 09:49 PM
https://www.youtube.com/watch?v=kFn6r3SP6qA
Please look at this link that helped me to configure ETF. But did not show testing part.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide