About joelbland

joelbland · 04-02-2019

Hello IronPort Admins,I recently built a web-based dashboard to help me monitor key health statistics for the ESAs in our environment. I'm sharing the code here so that others might benefit. The HTML is written using the Bootstrap3 framework, so it's...

joelbland · 12-19-2018

Hi all, Our team has been working on a regular expression for detecting bitcoin addresses. I'd like to get your feedback on our RegEx and see what others are doing to detect crypto currency addresses in email. The RegEx we're using in our Dictio...

joelbland · 04-19-2018

Hello, I'm attempting to validate an incoming content filter using the Trace function before committing the changes to the ESA, however, it appears that it doesn't actually evaluate the country code from the IP address given. However, if I commit t...

joelbland · 05-03-2017

Occasionally, we have messages which are not processed out of the File Analysis quarantine. The messages are pending file analysis, but if we don't receive a response from the ThreatGrid cloud, then we have to manually process the messages. Is it pos...

joelbland · 04-28-2017

Hi everyone, We have 3 ESAs in a cluster reporting to an SMA. We have been seeing more duplicate MIDs when searching message tracking in the SMA. As I understand it, clustered ESAs do not coordinate MID generation. But is it possible to seed the sta...

joelbland · 06-23-2020

@rahulslal - I recommend you review the Release Notes for the AsyncOS 12 and 13 revisions for any changes which would impact your environment. The release notes also link to the list of known and fixed issues.

joelbland · 07-12-2019

@OlivierAvilez - The Disclaimer Template supports HTML and inline CSS.Here's an example with some red text. The code includes formatting for both Outlook and standard HTML clients:<!--[if mso]> <div class="WordSection1"><table class="MsoTableGrid" st...

joelbland · 04-19-2019

Thanks, @marc.luescherFRE My Splunk skills are very basic, so I'm probably doing this wrong, but I'm charting CPU and RAM with: timechart avg(CPU_Total) by host andindex=* RAM_Used>0 | timechart span=1h avg(RAM_Used) by hostwhere CPU_Total and RAM_Us...

joelbland · 04-12-2019

Huge thanks to @marc.luescherFRE and @Paul Thomas Cyblue for providing these excellent Splunk examples. Following your guidance, @Paul Thomas Cyblue, I was able to quickly get a proof-of-concept dashboard working in my lab. Thanks!

joelbland · 04-08-2019

For Anti-Spam we're using Positive > 75Suspect > 40

Member Since	‎09-12-2016 05:58 AM
Date Last Visited	‎03-02-2022 11:15 AM
Posts	22
Total Helpful Votes Received	25

User Statistics

User Activity

ESA Health Dashboard

Bitcoin RegEx

Geo Lookup Not Evaluating with Trace

Restart File Analysis for Message Stuck in AMP

Duplicate MIDs

Re: Stable 13.X firmware for Cisco ESA Virtual Appliance

Re: ESA - Text Resourse

Re: ESA Health Dashboard

Re: ESA Health Dashboard

Re: request for feedback - SPAM thresholds for Ironport AntiSPAM and IMS