Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Getting lots of critical error since 14 Dec 2017 from several of our Ironport ESAV appliances:
Critical: MID xxxxxxx cannot be scanned by CASE. The message is either malformed or CASE is unable to process it at the moment.
ESAV appliances are C30...
Hi.Our loadbalanced Ironport ESA farm (C160 + C170 + C370) do have the same problem. Using sw 8.5.6-106. Now the support ticket has Status Fixed. What is the fix or workaround to get this fixed?Jussi
So SMA does not include sslconfig CLI command. We cannot reonfigure SSL/TLS ciphers as we do for ESA (C-series) appliances. Once I got instructions from TAC support telling, that I must download config file from SMA, edit those cipher parameters manu...
We have M160 + 2xC160. Centralized Ironport Spam Quarantine in M160, and quarantine digest alerts and quarantine management working fine for spam detected messages.Noticed, that if doing a pro-active Incoming or Outgoing Mail Filtering for Outlook 20...
After POC tests, we're abt to deploy M160 + 2xC160 Ironport environment. Recipient filtering seems to be builtin as LDAP based implementation. We've been using Postfix MTA for years and it has very nice verify feature able to verify SMTP envelope re...
It looks like 99% of all alerts are related to messages coming from lightinthebox.com or miniinthebox.com webshops. I have a CLI message filter logging From: and Reply-To: headers. It looks like all the problematic message events do have weird MIME e...
Any chance getting TLS 1.2 for quarantine https listener in a SMA running AsyncOS 9.5.0-125 GA ? There is still no sslconfig command to use. And there is no SSL Configuration in web GUI either. If downloading the configuration file, is there any way ...
We have a cluster of two C160 appliances. Can we add a new C370 appliance as a 3rd node in the cluster and are the nodes able to share the same clustered configuration, even one node is running different hardware?Or could we buy two C370 boxes, shutd...
I agree. Ironport exposess full set of SMTP headers for quarantined messages, but not that HTML formatted message. That makes it impossible to check suspectable messages for phishing styled links as you said. I opened a support ticket about this case...
