Cisco Cisco ASA 5510 Adaptive Security Appliance 데이터 시트

 

 

Customer Case Study 

© 2010-2012 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public Information. 

Page 2 of 2 

The goal was to make the transition to the cloud email security with Cisco transparent to users. Cisco had to maintain 

the same level of spam capture rate, if not better, while also providing advanced routing and policies for both First 

American and CoreLogic. As the companies went through the process of splitting into two separate organizations, all 

email bound for CoreLogic would have to be processed by the First American filtering solution. This period of 

coexistence required that many complex and detailed filtering and routing processes be put in place to maintain 

similar but separate scanning policies. The new solution would have to leverage Lightweight Directory Access 

Protocol (LDAP) routing in order to deliver mail to the correct company once it had been processed in the cloud. The 

unique capabilites of the Cisco IronPort Hybrid solution offered email scanning in the cloud with advanced Active 

Directory (AD) integration and routing required with the use of the on-premises devices.   

Once it became an independent company, First American Financial Corp. would continue to have a very complex 

routing scenario to address. All email traffic intended for the new CoreLogic organization needed to be routed

—

intact

—and the Information Solutions Group’s legacy email hosted and held securely. The IT team at First American 

Financial Corp. would need an email security solution with flexible routing for under 100,000 objects and content 
filtering that offered encryption. In addition, the solution needed to be integrated with First American’s existing MS 

exchange email servers. 

The main problem for the coexistence phase was handling mail that was destined for two separate companies but 

addressed using a single email domain of @firstam.com. First American users would have their spam quarantined in 

the cloud while CoreLogic users required their email to be delivered to their environment. The solution was to tag 

spam in the cloud for all recipients and deliver to the on-premises devices that would use AD groups to assign 

custom policies for First American and Corelogic users. These custom mail policies would then quarantine only the 

First American spam and deliver the tagged spam to CoreLogic as the company required. Finally, LDAP/AD routing 

was used to deliver mail to the many different email systems once the mail was inside the First American 

infrastructure. 

First American Financial Corp. implemented the Cisco IronPort Cloud Email Security as its new email backbone just a 

few months prior to its transformation into an independent company in 2010. It has encountered no difficulty in 
routing, hosting and holding CoreLogic’s email traffic, and is ensuring security for that email through subject-based 
encryption. The company’s IT team also created a connector between the Cisco IronPort email gateway and 

CoreLo

gic’s gateway to enable communication between the two backbones. This also provided a means for reporting 

on the volume of email bound for Corelogic that was still being processed by First American. In addition, the Cisco 

IronPort solution is helping the company to deflect a significant amount of spam. First American Financial Corp. 
estimates that roughly 92 percent of its incoming email is spam. Cisco IronPort’s Reputation Filters, which use data 

from the Cisco SensorBase Network to perform real-time email traffic threat assessments and identify suspicious 

email senders, are blocking more than 139 million spam emails per day. 

 

 

 

 

 

Printed in USA 

C36-633523-02   01/12