I've been having a lot of problems with our SSM module (SSM-10, ASA5510). The outbound scanning was corrupting some documents so I had to block email from being scanned when it is outbound. It wasn't enough to disable outbound scanning in the Trend Micro configuration panel, I actually denied it with an access list. Here is the configuration: access-list outside_mpc remark deny outbound email access-list outside_mpc extended deny ip host x.x.x.x any access-list outside_mpc remark allow all other traffic to be scanned access-list outside_mpc extended permit object-group DM_INLINE_SERVICE_1 any any class-map inspection_default match default-inspection-traffic class-map outside-class match access-list ! ! policy-map type inspect dns preset_dns_map parameters message-length maximum client auto message-length maximum 512 policy-map global_policy class inspection_default inspect dns preset_dns_map inspect ftp inspect h323 h225 inspect h323 ras inspect rsh inspect rtsp inspect sqlnet inspect skinny inspect sunrpc inspect xdmcp inspect sip inspect netbios inspect tftp inspect ip-options inspect icmp policy-map outside-policy class outside-class csc fail-open ! service-policy global_policy global service-policy outside-policy interface outside Prior to adding the deny rule for our email server, a lot of spam was being caught. Since adding that rule, no spam seems to be filtered and no emails seem to be scanned inbound. I used emailsecuritycheck.net to test scanning and all 7 test emails made it through and into my inbox/junk. Am I missing something in the configuration? Thanks in advance.
... View more