Cisco Community
English
Register
COMMUNITY HELPING COMMUNITY - With your Community actions and contributions, we will donate up to $10,000 to UNICEF by end of January- PARTICIPATE
Register
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
3040
Views
0
Helpful
2
Replies
Highlighted
mychrislo
Beginner
Beginner
‎10-21-2012 10:59 PM
‎10-21-2012 10:59 PM

IronPort Anti-Spam Scanning: Maximum Message Size to Scan

What's the reasonable size can be set (beyond the recommended 256k)?

Our incoming clean volume of messages are around 20k - 30k. Model is a single c150.

We found there are messages larger than this size and bypass our anti-spam. Causing some management level users to complain.

How do you guys solve this kind of problem?

Thanks.

Chris

Labels:
0 Helpful
Reply
2 REPLIES 2
Highlighted
Ken Stieers
Engager
Engager
‎10-22-2012 03:33 PM
‎10-22-2012 03:33 PM

How big are the messages that are slipping through?

Set the limits to catch those...

If that burries the box, hand the bosses the bill for an upgrade to a C3xx...

You'll need to get off the 150 box anyway, its EOL soon...

Currently I've got a C370 (overkill for the amount of traffic we have now...5200 inbound clean messages today)

Its limits are set to scan everything under 1M, don't scan anything over 25M, and scan for up to 120 seconds.

You could also toss those suspect messages over to Cisco to find out why they aren't getting caught as spam... there may be some tweaking that can be done...

0 Helpful
Reply
Highlighted
mychrislo
Beginner
Beginner
In response to Ken Stieers
‎10-23-2012 08:58 AM
‎10-23-2012 08:58 AM

My statistics for 2 months logs

# of email unscanned due to ovesized CASE limit

If I double 256k to 512k. 30% of those unscanned emails can be scanned

If I go to 800k, ~50%.

0 Helpful
Reply
Latest Contents
Cyber Ops Pro 350-201 CBRCOR
Created by Gallifrean on 11-25-2020 02:44 PM
1
0
1
0
Does anyone know when and where study resources will become available for this certification?
Is it right way to exclude ? \Program Files\Commvault\*
Created by Pruthvirajnasagoni89418 on 11-24-2020 09:34 AM
0
0
0
0
Hi Team, I have one exclusion provided by internal team which is Is it right way to exclude ?  *\Program Files\XYZ\* , as per Cisco Docs i see its not recommended because it will create performance issue when we use * at starting ,  So... view more
Customer Connection Briefing - Central Log Management using ...
Created by Kelsy Tibshraeny on 11-24-2020 09:27 AM
0
0
0
0
Central Log Management using Cisco Security Analytics and Logging, December 2nd at 8am-9:30am PT Cisco Security Analytics and Logging is Cisco’s Central Log Management solution for Network Operations and Security Outcomes. It is delivered both as a c... view more
How to: Integrate Cisco ISE MDM with Microsoft Intune
Created by pavagupt on 11-23-2020 01:54 AM
0
5
0
5
Introduction             Mobile Device Management (MDM) servers secure, monitor, manage, and support mobile devices deployed across mobile operators, service providers, and enterprises. MDM servers a... view more
Cyberattacks are on the Rise - Secure your Digital Experienc...
Created by carbaker on 11-19-2020 11:49 AM
0
0
0
0
Cyberattacks are more sophisticated than ever and your online presence has never been more critical to the success of your business.  Cisco, through its OEM partnership with Radware, can help secure your digital future by continuously monitoring... view more
Content for Community-Ad
Cisco Community October 2020 Spotlight Award Winners

Follow our Social Media Channels