Getting Started with the Cisco Cloud Security

Similar documents
File Reputation Filtering and File Analysis

Using Centralized Security Reporting

Understanding the Pipeline

Test-king q

IronPort AsyncOS 6.4. RELEASE NOTES for IronPort Security Appliances

Vendor: Cisco. Exam Code: Exam Name: ESFE Cisco Security Field Engineer Specialist. Version: Demo

Cisco s Appliance-based Content Security: IronPort and Web Security

Tracking Messages

Managing Graymail. Overview of Graymail. Graymail Management Solution in Security Appliance

Content Filters. Overview of Content Filters. How Content Filters Work. This chapter contains the following sections:

Sender Reputation Filtering

Comprehensive Setup Guide for TLS on ESA

Cisco Encryption

Anti-Virus. Anti-Virus Scanning Overview. This chapter contains the following sections:

Cisco Download Full Version :

========================================================================= Symantec Messaging Gateway (formerly Symantec Brightmail Gateway) version

provides several new features and enhancements, and resolves several issues reported by WatchGuard customers.

Tracking Messages. Message Tracking Overview. Enabling Message Tracking. This chapter contains the following sections:

Release Notes for Cisco IronPort AsyncOS for

ESFE Cisco Security Field Engineer Specialist

CISCO NETWORKS BORDERLESS Cisco Systems, Inc. All rights reserved. 1

Defining Which Hosts Are Allowed to Connect Using the Host Access Table

Release Notes for Cisco IronPort AsyncOS 7.7 for Security Management

Release Notes for Cisco IronPort AsyncOS for Security Management AR

Cisco Security. Advanced Malware Protection. Guillermo González Security Systems Engineer Octubre 2017

Defining Which Hosts Are Allowed to Connect Using the Host Access Table

FIPS Management. FIPS Management Overview. Configuration Changes in FIPS Mode

User Guide for AsyncOS 11.0 for Cisco Content Security Management Appliances

Release Notes for AsyncOS for Cisco Web Security Appliances

Contents. Introduction. WSA WebBase Network Participation

PineApp Mail Secure SOLUTION OVERVIEW. David Feldman, CEO

Centralized Policy, Virus, and Outbreak Quarantines

Release Notes for Cisco IronPort AsyncOS for Web

Chapter 1: Content Security

Anti-Spam. Overview of Anti-Spam Scanning

Using Trustwave SEG Cloud with Cloud-Based Solutions

Release Notes for Cisco IronPort AsyncOS for

Enabling AMP on Content Security Products (ESA/WSA) November 2016 Version 2.0. Bill Yazji

Release Notes for Cisco IronPort AsyncOS 7.8 for Security Management

Technical Overview. Access control lists define the users, groups, and roles that can access content as well as the operations that can be performed.

Best Practices: Enabling AMP on Content Security Products (ESA/WSA) March 2017 Version 2.3. Bill Yazji

Release Notes for Cisco IronPort AsyncOS 7.0 for Web

Anti-Spam. Overview of Anti-Spam Scanning

Release Notes for Cisco IronPort AsyncOS for Web

Managing Spam. To access the spam settings in admin panel: 1. Login to the admin panel by entering valid login credentials.

Firewall XG / SFOS v16 Beta

Release Notes for Cisco IronPort AsyncOS for Web

IronPort AsyncOS RELEASE NOTES for Web Security Appliances

On the Surface. Security Datasheet. Security Datasheet

McAfee Network Security Platform 8.3

Cisco Security: Advanced Threat Defense for Microsoft Office 365

Outbreak Filters. Overview of Outbreak Filters. This chapter contains the following sections:

McAfee Data Loss Prevention 9.2.2

Symantec ST0-250 Exam

Using Trustwave SEG Cloud with Exchange Online

Office 365 Buyers Guide: Best Practices for Securing Office 365

McAfee Network Security Platform 8.3

Spam Quarantine. Overview of the Spam Quarantine. This chapter contains the following sections:

CipherMail encryption. CipherMail white paper

Release Notes for Cisco IronPort AsyncOS for Web

GLBA Compliance. with O365 Manager Plus.

WeCloud Security. Administrator's Guide

Enterprise Protection for the Administrator

File Policies and AMP for Firepower

Configure WSA to Upload Log Files to CTA System

SOLUTION MANAGEMENT GROUP

Configure WSA to Upload Log Files to CTA System

Release Notes for Cisco IronPort AsyncOS for Web

Spam Quarantine. Overview of the Spam Quarantine. Local Versus External Spam Quarantine

IronPort C100 for Small and Medium Businesses

McAfee Network Security Platform 8.3

AccessEnforcer Version 4.0 Features List

Avanan for G Suite. Technical Overview. Copyright 2017 Avanan. All rights reserved.

ESET Mobile Security for Windows Mobile. Installation Manual and User Guide - Public Beta

Comodo Dome Antispam Software Version 6.0

Introduction With the move to the digital enterprise, all organizations regulated or not, are required to provide customers and anonymous users alike

VMware AirWatch Content Gateway for Linux. VMware Workspace ONE UEM 1811 Unified Access Gateway

Release Notes for Cisco IronPort AsyncOS 7.3 for

Symantec ST Symantec Messaging Gateway Download Full Version :

SolarWinds Mail Assure

Managing SonicWall Gateway Anti Virus Service

IronPort X1000 Security System

Cisco Systems, Inc IronPort

AXIGEN Features and Supported Platforms

McAfee Network Security Platform 9.1

Sophos Central Admin. help

How to make spam your best friend on your appliance

Sophos Appliance Configuration Guide. Product Version 4.3 Sophos Limited 2017

McAfee Network Security Platform 8.1

IronPort AsyncOS RELEASE NOTES for Web Security Appliances

HIPAA Compliance. with O365 Manager Plus.

System Administration

Fireware-Essentials. Number: Fireware Essentials Passing Score: 800 Time Limit: 120 min File Version: 7.

PROTECTION. ENCRYPTION. LARGE FILES.

How-To Configure Mailbox Auto Remediation for Office 365 on Cisco Security

Comodo Dome Antispam Software Version 6.0

McAfee Content Security Reporter 2.6.x Migration Guide

SonicWALL Security Software

Sandstorm: Frequently asked questions. May August 2016 Page 1 of 7

Endian Hotspot main features

Transcription:

Getting Started with the Cisco Cloud Email Security This chapter contains the following sections: What's New in Async OS 11.1, on page 1 What s New in Async OS 11.0, on page 4 Where to Find More Information, on page 11 Cisco Email Security Appliance Overview, on page 14 What's New in Async OS 11.1 Table 1: Whats New in Async OS 11.1 AMP for Endpoints Console Integration You can now integrate your appliance with AMP for Endpoints console, and add your own blacklisted or whitelisted file SHAs. After the integration, when a file SHA is sent to the File Reputation server, the verdict obtained for the file SHA from the File Reputation Server is overridden by the verdict already available for the same file SHA in the AMP for Endpoints console. To integrate your appliance with AMP for Endpoints console, see File Reputation Filtering and File Analysis. The Advanced Malware Report page now includes a new section - Incoming Malware Files by Category to view the percentage of blacklisted file SHAs received from the AMP for Endpoints console. The threat name of a blacklisted file SHA is displayed as Simple Custom Detection in the Incoming Malware Threat Files section of the report. See File Reputation Filtering and File Analysis. 1

What's New in Async OS 11.1 URL Filtering Support for Shortened URLs Support for URL Scanning in Attachments Handling Unscannable Messages You can now configure your appliance to perform URL filtering on shortened URLs, and retrieve the actual URL from the shortened URL. Based on the URL reputation score of the original URL, a configured action is taken on the shortened URL. To enable URL filtering for shortened URLs in your appliance, see Protecting Against Malicious or Undesirable URLs or CLI Reference Guide for AsyncOS for Cisco Email Security Appliance. You can now configure your appliance to scan for URLs in message attachments, and perform configured actions on such messages. You can use the URL Reputation and URL Category content and message filters to scan for URLs in message attachments. For more details, see Using Message Filters to Enforce Email Policies, Content Filters and Protecting Against Malicious or Undesirable URLs. You can now configure your appliance to handle messages that are not scanned by the following engines: Content Scanner File Reputation and File Analysis services URL Filtering To configure appropriate actions on such messages, see Using Message Filters to Enforce Email Policies, File Reputation Filtering and File Analysis, Protecting Against Malicious or Undesirable URLs and the CLI Reference Guide for AsyncOS for Cisco Email Security Appliances. 2

What's New in Async OS 11.1 Improved Pre-classification Efficacy (Reducing File Uploads to Cisco AMP Threat Grid) The File Analysis service in your appliance now supports all the file types supported by Cisco AMP Threat Grid. You can use this feature to: Upload files that only contain dynamic content for file analysis. This helps administrators to track the daily file upload limit. Reduce file uploads for file analysis. To configure this feature, see File Reputation Filtering and File Analysis and the CLI Reference Guide for AsyncOS for Cisco Email Security Appliances. Note If you are using the private cloud file analysis server version 2.4 or an earlier version, it is recommended that you do not enable the new file types for file analysis. A new verdict Low Risk is introduced when no dynamic content is found in a file after file analysis. You can view the verdict details in the Incoming Files Handed by AMP section of the Advanced Malware Protection report and in Message Tracking. For more details, see Tracking Messages. Improving File Retrospective Verdict Alerts Restarting and Viewing the Status of Service Engines enabled on the appliance. You can now configure your appliance to suppress the verdict update alerts for all messages that are not delivered to the message recipient. To enable this feature, see File Reputation Filtering and File Analysis or the CLI Reference Guide for AsyncOS for Cisco Email Security Appliances. You can use the diagnostic > services the CLI to: sub command in Restart the service engines enabled on your appliance without having to reboot your appliance. View the status of the service engines enabled on your appliance. To use this feature, see System Administration or CLI Reference Guide for AsyncOS for Cisco Email Security Appliance. Setting the Priority for Message Headers You can set the priority for a message header to match the incoming and outgoing messages in your appliance. To enable this feature, see Mail Policies or CLI Reference Guide for AsyncOS for Cisco Email Security Appliance. 3

What s New in Async OS 11.0 Performing Recipient Verification and Resolving Group Queries using Office 365-LDAP Connector The Office 365- LDAP Connector tool allows you to retrieve user details and group information from the Azure Active Directory (AD), and store them on an LDAP server configured on the Cisco Cloud environment. You can perform LDAP recipient verification and group queries to the LDAP server using the actions configured for the LDAP profile on your instance. You can only use the Office 365-LDAP connector feature if your instance is hosted in any one of the following datacenters: Europe Americas Canada For more information, see chapter LDAP Queries. What s New in Async OS 11.0 Table 2: What's New in this Release New Data Loss Prevention (DLP) solution RSA has announced End of Life (EOL) for RSA Data Loss Prevention Suite. For more information, see https://community.rsa.com/docs/doc-59316. Cisco now provides an alternative DLP solution that allows seamless migration of all the existing DLP policies created in RSA DLP to the new DLP engine. After the upgrade, you can view or modify the migrated DLP policies in Mail Policies > DLP Policy Manager page in the web interface. For more information, see the Data Loss Prevention chapter in the user guide. Note There is no support for RSA Enterprise Manager Integration in Async0S 11.0 and later. If you have DLP policies created in RSA Enterprise Manager, you must recreate those policies in your appliance after the upgrade. 4

What s New in Async OS 11.0 Handling incoming mail connections and incoming messages from different geographic locations Cisco Email Security appliance can now handle incoming mail connections and incoming messages from specific geolocations and perform appropriate actions on them, for example: Prevent email threats coming from specific geographic regions. Allow or disallow emails coming from specific geographic regions. You can use this feature in the following ways: SMTP Connection Level. You can now configure sender groups to handle incoming mail connections from specific geolocations using one of the following ways: Mail Policies > HAT Overview > Add Sender Group > Submit and Add Senders > Geolocation option in the web interface. listenerconfig > hostaccess > country command in the CLI. For more information, see "Defining Which Hosts Are Allowed to Connect Using the Host Access Table" or the CLI Reference Guide for AsyncOS for Cisco Email Security Appliances. You can use the Geo Distribution report to view the details of incoming mail connections from specific geolocations based on the sender's country of origin. For more information, see "Using Email Security Monitor". Content or Message Filter Level: You can now create a content or a message filter to handle incoming messages from specific geolocations and perform appropriate actions on such messages. Content and message filters include the following new options: A new content filter condition - Geolocation A new message filter rule - geolocation-rule(). For more information, see Content Filters or Using Message Filters to Enforce Email Policies. You can use the Content Filters and Message Filters reports to view the details of incoming messages from specific geolocations that are detected by the content or message filter. See Using Email Security Monitor. You can use Message Tracking to search for incoming messages from specific geolocations detected by the content or message filter. Use the Geolocation filter for the Message Event option in the Advanced section of Message Tracking. The geolocation list of countries is cloud updateable. 5

What s New in Async OS 11.0 Scanning Outgoing Messages using the AMP engine You can now configure the appliance to scan outgoing messages using the AMP engine. You can use this feature to: Prevent users from sending malicious messages from the organization s network, which can lead to low IP or domain reputation. Track users who are sending outbound messages with malicious attachments and perform appropriate actions on them. You can configure the outgoing mail policy of your appliance to allow scanning of messages by the AMP engine in one of the following ways: Mail Policies > Outgoing Mail Policies page in the web interface. See File Reputation Filtering and File Analysis. policyconfig command in the CLI. The following reports have been enhanced to show details of outgoing messages scanned by the AMP engine: Advanced Malware Protection AMP File Analysis AMP Verdict Updates Overview Page Outgoing Destinations Outgoing Senders Internal Users See Using Email Security Monitor You can use the Mail Flow Direction filter in the Message Tracking > Message Event > Advanced Malware Protection option to search for incoming and outgoing messages that are scanned by the AMP engine. 6

What s New in Async OS 11.0 Manually Rollback to a Previous Version of the Service Engine You can now manually roll back to a previous version of the current engine when: The engine update is defective. The engine is not functioning properly. Currently, you can perform an engine rollback for the following engines: McAfee Sophos Graymail You can perform an engine rollback only at the machine level and not at the cluster level. You can use the Security Services > Services Overview page in the web interface to perform: Rollback to a previous version of the service engine. Manually update the service engines to the required version. For more information, see System Administration Enable or Disable Automatic Updates You can now enable or disable automatic updates in the Global Settings page of the following service engines: McAfee Sophos Graymail You can now receive periodic alerts when automatic updates are disabled for a specific service engine. You can change the existing alert interval in one of the following ways: Security Services > Service Updates > Alert Interval for Disabled Automatic Engine Updates option in the web interface. See System Administration. updateconfig command in the CLI. 7

What s New in Async OS 11.0 Performing additional actions on attachments detected by Advanced Malware Protection in Mail Policy You can perform the following additional actions, if an attachment is considered malicious, unscannable, or sent for file analysis in the Advanced Malware Protection section for Incoming or Outgoing Mail Policies: Modifying the message recipient. Sending the message to an alternate destination host. For more information see, File Reputation Filtering and File Analysis. Improved AMP Engine Logs Information about the following scenarios are now logged in the AMP engine logs: File that is not uploaded to the File Analysis server. File that is skipped for file analysis because the appliance exceeded the daily file upload limit to the File Analysis server. File that is marked as unscannable. 8

What s New in Async OS 11.0 Supported Archive File Formats for Content Scanning The Content Scanner in your appliance can perform content scanning on the following archive file formats: ACE Archive ALZ Archive Apple Disk Image ARJ Archive bzip2 Archive EGG Archive GNU Zip ISO Disk Image Java Archive LZH Microsoft Cabinet Archive RAR Multi-Part File RedHat Package Manager Archive Roshal Archive (RAR) Unix AR Archive UNIX Compress Archive UNIX cpio UNIX Tar XZ Archive Zip Archive 7-Zip Macro Detection Enhancement You can now detect macros in the following files: Javascript macros in Adobe Acrobat Portable Document Format (PDF) files. Visual Basic for Applications (VBA) macros in Microsoft Office Files (Open XML) and OLE files. For more information, see Content Filters or Using Message Filters to Enforce Email Policies. 9

What s New in Async OS 11.0 CRL check for web interface login You can configure CRL check for web interface login using one of the following ways: Network > CRL Sources > Edit Settings > CRL check for WebUI option in the web interface. See Authenticating SMTP Sessions Using Client Certificates certconfig > crl command in the CLI. If you enable this option and the certificate is revoked: You will receive an alert indicating that the certificate is revoked. You will not be able to access the web interface of your appliance. However, you can still log in to your appliance using the CLI. You must import and configure a valid certificate through the CLI to be able to access the web interface of your appliance. See CLI Reference Guide for AsyncOS for Cisco Email Security Appliances. Configuring cache expiry period for File Reputation disposition values. You can configure the cache expiry period for File Reputation disposition values in one of the following ways: Security Services > File Reputation and Analysis > Cache Settings page in the web interface. ampconfig > cachesettings > modifytimeout command in the CLI. See File Reputation Filtering and File Analysis. New datacenter added in European region for File Reputation and File Analysis services Cisco has added a new datacenter in the European region for the File Reputation and File Analysis services: EUROPE (cloud-sa.eu.amp.cisco.com) for File Reputation server EUROPE (https://panacea.threatgrid.eu) for File Analysis server You can configure your Email Security appliance to use the new File Reputation and File Analysis services. For more information, see File Reputation Filtering and File Analysis. 10

Where to Find More Information Minimum Scores for Entity-based Rules of Custom Classifiers for Custom DLP Policies You can now use the recommended minimum scores or choose to override the minimum score for entity-based rules, when you create custom classifiers for custom DLP policies. You can use the minimum score for an entity-based rule instead of the configured weight of the rule. The minimum score differentiates the partial and the full matches, and calculates the score accordingly. This helps in reducing the number of false positives and false negatives. To configure the minimum score: 1. Go to Mail Policies > DLP Policy Customizations > Custom Classifiers Settings section and select the Use recommended minimum scores for entity-based rules check box. 2. Go to Mail Policies > DLP Policy Customizations > Add Custom Classifier (or review an existing custom classifier) and enter the minimum score. For more information, see the "Data Loss Prevention" chapter in the user guide. Where to Find More Information Documentation Cisco offers the following resources to learn more about your appliance: Documentation, on page 11 Training, on page 12 Cisco Notification Service, on page 12 Knowledge Base, on page 12 Cisco Support Community, on page 13 Cisco Customer Support, on page 13 Third Party Contributors, on page 13 Cisco Welcomes Your Comments, on page 14 Registering for a Cisco Account, on page 14 You can access the online help version of this user guide directly from the appliance GUI by clicking Help and Support in the upper-right corner. The documentation set for the Cisco Email Security appliances includes the following documents and books: Release Notes Quick Start Guide for your Cisco Email Security Appliance model Hardware Installation or Hardware installation and maintenance guide for your model or series Cisco Content Security Virtual Appliance Installation Guide User Guide for AsyncOS for Cisco Email Security Appliances (this book) CLI Reference Guide for AsyncOS for Cisco Email Security Appliances 11

Training AsyncOS API for Cisco Email Security Appliances - Getting Started Guide Documentation for all Cisco Content Security products is available from: Documentation For Cisco Content Security Products Hardware and virtual appliances Cisco Email Security Cisco Web Security Cisco Content Security Management CLI reference guide for Cisco Content Security appliances Cisco IronPort Encryption Location See the applicable product in this table. http://www.cisco.com/c/en/us/support/security/ email-security-appliance/tsd- products-support-series-home.html http://www.cisco.com/c/en/us/support/security/ web-security-appliance/tsd-products- support-series-home.html http://www.cisco.com/c/en/us/support/ security/content-security-management- appliance/tsdproducts-support-series-home.html http://www.cisco.com/c/en/us/support/security/ email-security-appliance/products-command-reference-list.html http://www.cisco.com/c/en/us/support/security/ email-security-appliance/products-command-reference-list.html Training More information about training is available from: http://www.cisco.com/c/en/us/training-events/training-certifications/supplementaltraining/email-and-web-security.html http://www.cisco.com/c/en/us/training-events/training-certifications/overview.html Cisco Notification Service Knowledge Base Sign up to receive notifications relevant to your Cisco Content Security Appliances, such as Security Advisories, Field Notices, End of Sale and End of Support statements, and information about software updates and known issues. You can specify options such as notification frequency and types of information to receive. You should sign up separately for notifications for each product that you use. To sign up, visit http://www.cisco.com/cisco/support/notifications.html A Cisco.com account is required. If you do not have one, see Registering for a Cisco Account, on page 14. Step 1 Go to the main product page (http://www.cisco.com/c/en/us/support/security/ email-security-appliance/tsd-products-support-series-home.html) 12

Cisco Support Community Step 2 Look for links with TechNotes in the name. Cisco Support Community The Cisco Support Community is an online forum for Cisco customers, partners, and employees. It provides a place to discuss general email and web security issues, as well as technical information about specific Cisco products. You can post topics to the forum to ask questions and share information with other Cisco users. Access the Cisco Support Community on the Customer Support Portal at the following URLs: For email security and associated management: https://supportforums.cisco.com/community/5756/email-security For web security and associated management: https://supportforums.cisco.com/community/5786/web-security Cisco Customer Support Third Party Contributors Do not contact Cisco Customer Support for help with Cloud Email Security appliances. See the Cisco IronPort Hosted Email Security / Hybrid Hosted Email Security Overview Guide for information on getting support for Cloud/Hybrid Email Security appliances. Cisco TAC: http://www.cisco.com/c/en/us/support/web/tsd-cisco-worldwide-contacts.html Support site for legacy IronPort: http://www.cisco.com/c/en/us/services/acquisitions/ironport.html For non-critical issues, you can also access customer support from the appliance. For instructions, see the User Guide or online help. See Open Source licensing information for your release on this page: http://www.cisco.com/c/en/us/support/security/email-security-appliance/products-release-notes-list.html. Some software included within Cisco AsyncOS is distributed under the terms, notices, and conditions of software license agreements of FreeBSD, Inc., Stichting Mathematisch Centrum, Corporation for National Research Initiatives, Inc., and other third party contributors, and all such terms and conditions are incorporated in Cisco license agreements. The full text of these agreements can be found here: https://support.ironport.com/3rdparty/asyncos_user_guide-1-1.html. Portions of the software within Cisco AsyncOS is based upon the RRDtool with the express written consent of Tobi Oetiker. Portions of this document are reproduced with permission of Dell Computer Corporation. Portions of this document are reproduced with permission of McAfee, Inc. Portions of this document are reproduced with permission of Sophos Plc. 13

Cisco Welcomes Your Comments Cisco Welcomes Your Comments The Cisco Technical Publications team is interested in improving the product documentation. Your comments and suggestions are always welcome. You can send comments to the following email address: contentsecuritydocs@cisco.com Please include the product name, release number, and document publication date in the subject of your message. Registering for a Cisco Account Access to many resources on Cisco.com requires a Cisco account. If you do not have a Cisco.com User ID, you can register for one here: https://tools.cisco.com/rpf/register/register.do%20 Related Topics Cisco Notification Service, on page 12 Knowledge Base, on page 12 Cisco Email Security Appliance Overview The AsyncOS operating system includes the following features: Anti-Spam at the gateway, through the unique, multi-layer approach of SenderBase Reputation Filters and Cisco Anti-Spam integration. Anti-Virus at the gateway with the Sophos and McAfee Anti-Virus scanning engines. Outbreak Filters, Cisco s unique, preventive protection against new virus, scam, and phishing outbreaks that can quarantine dangerous messages until new updates are applied, reducing the window of vulnerability to new message threats. Policy, Virus, and Outbreak Quarantines provide a safe place to store suspect messages for evaluation by an administrator. Spam Quarantine either on-box or off, providing end user access to quarantined spam and suspected spam. Email Authentication. Cisco AsyncOS supports various forms of email authentication, including Sender Policy Framework (SPF), Sender ID Framework (SIDF), and DomainKeys Identified Mail (DKIM) verification of incoming mail, as well as DomainKeys and DKIM signing of outgoing mail. Cisco Email Encryption. You can encrypt outgoing mail to address HIPAA, GLBA and similar regulatory mandates. To do this, you configure an encryption policy on the Email Security appliance and use a local key server or hosted key service to encrypt the message. Email Security Manager, a single, comprehensive dashboard to manage all email security services and applications on the appliance. Email Security Manager can enforce email security based on user groups, allowing you to manage Cisco Reputation Filters, Outbreak Filters, Anti-Spam, Anti-Virus, and email content policies through distinct inbound and outbound policies. On-box message tracking. AsyncOS for Email includes an on-box message tracking feature that makes it easy to find the status of messages that the Email Security appliance processes. Mail Flow Monitoring of all inbound and outbound email that provides complete visibility into all email traffic for your enterprise. Access control for inbound senders, based upon the sender s IP address, IP address range, or domain. 14

Supported Languages Extensive message and content filtering technology allows you to enforce corporate policy and act on specific messages as they enter or leave your corporate infrastructure. Filter rules identify messages based on message or attachment content, information about the network, message envelope, message headers, or message body. Filter actions allow messages to be dropped, bounced, archived, blind carbon copied, or altered, or to generate notifications. Message encryption via secure SMTP over Transport Layer Security ensures messages traveling between your corporate infrastructure and other trusted hosts are encrypted. Virtual Gateway technology allows the Email Security appliance to function as several email gateways within a single server, which allows you to partition email from different sources or campaigns to be sent over separate IP addresses. This ensures that deliverability issues affecting one IP address do not impact others. Protection against malicious attachments and links in email messages, provided by multiple services. Use Data Loss Prevention to control and monitor the information that leaves your organization. AsyncOS supports RFC 2821-compliant Simple Mail Transfer Protocol (SMTP) to accept and deliver messages. Most reporting, monitoring, and configuration commands are available through both the web-based GUI via HTTP or HTTPS. In addition, an interactive Command Line Interface (CLI) which you access from a Secure Shell (SSH) or direct serial connection is provided for the system. You can also set up a Security Management appliance to consolidate reporting, tracking, and quarantine management for multiple Email Security appliances. Related Topics Supported Languages Supported Languages, on page 15 AsyncOS can display its GUI and CLI in any of the following languages: English French Spanish German Italian Korean Japanese Portuguese (Brazil) Chinese (traditional and simplified) Russian 15

Supported Languages 16

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback