Hello Guys,Is it possible that Cisco ESA will scan the Internal/Local mails as well?For example, Alan and Jack both are working for the same company xyz and their Exchange server domain is xyz.com.Suppose Alan sent an email from his mail-id (alan@xyz...
Forum Posts
Resolved! Recover Messages with ETD
Hi! Is there any way for Cisco ETD (Email Threat Defense) to retrieve messages that have already been delivered and read by users?
Hi,My end is using Secure Email Gateway Virtual C300V Version: 16.0.0-050. Our end user reported that she got a 2FA email with subject added "SPAM" unexpectedly.Checked with other internal user, he also got those 2FA emails from same source but no su...
Hello,It is also the same behavior if 2 admins work on the same Quarantine (same than 2 tabs for one admin).We are waiting for a fixRegards,
When we add new ironport cluster member that using NAT, the new member communicate using real ip rather that NAT IP. In clusterconfig > COMMUNICATION, i can change the ip that used for cluster communication. When i change the IP address do i need to ...
The Warning message is: The mcafee was restarted due to an error. A debug file was generated for troubleshooting. Please contact your authorized support center.Version: 13.0.5-007Serial Number: 9CD57D419786-WMP260100TNTimestamp: 29 Jun 2025 14:35:00 ...
Hello,since 30.07.25 i get the following warning message daily: "Failed to retrieve certificate and key from the Cisco Talos certificate service."The actual used version is 16.0.2-112.I hope somebody can help me in this case.
Hello fellow community members,During a packet capture on C395 gateway appliance I detected that, released emails from SPAM Quarantine on M395 manager appliance, are not actually being released. Released emails from Policy Quarantine are being releas...
Hello community, We configure Iron port to send information mail logs to SIEM (IBM Qradar) using syslog. The configuration is working normally and we can see the logs in the SIEM. The problem that we have is that we start to receive an Critical m...
Get the following warning as mail alert, but can' find anything in Log-Files:The mcafee was restarted due to an error. A debug file was generated for troubleshooting. Please contact your authorized support center.Does anyone knows, what to do?
CSCwf38789 - ESA rejecting email with UTF-8 characters on Envelope RecipientDoes anyone know if there is an ETA for a fix regarding this annoying error?RegardsMichael
Resolved! Cisco ESA Suspected URL
Dear all. I configured url filtering and added -5 -3 (Custom Range) for Suspected url. But some emails (with legitimate urls inside it) get blocked by esa due to newly created suspected url content filter. Could you please tell me how can I see the e...
We are experiencing an issue with our Cisco Email Security (CES) appliance where some inbound emails are being processed as outgoing. As a result, these messages are not evaluated by the correct policies (e.g., antispam or sender authentication for i...
Observation: Microsoft has changed something and started rejecting valid DKIM signed emails. I've observed O365 and hotmail.com bouncing mails. To fix: Set each of your dkim signing profiles setting > Canonicalization values to "Relaxed. This makes t...
On our Email Security Appliances we're having the following challenge, with our own company's marketing emails being tagged. Under Mail Policies > Graymail settings, I have selected "Action on Marketing email" to prepend [MARKETING SPAM] to newslette...
