Cisco Cisco Email Security Appliance C680 User Guide

Be sure to include brackets in the query in the CLI. Brackets are not necessary 
when specifying a DNS List query in the GUI. Use the 

dnslistconfig

 command 

in the CLI to test a query, configure general settings for DNL queries, or flush the 
current DNS list cache. 

Note that this mechanism can be used to identify “good” connections as well as 
“bad” connections. For example, a query to query.bondedsender.org will match on 
connecting hosts who have posted a financial bond with Cisco IronPort Systems’ 
Bonded Sender™ program to ensure the integrity of their email campaign. You 
could modify the default WHITELIST sender group to query the Bonded Sender 
program’s DNS servers (which lists these legitimate email senders who have 
willingly posted bonds) and adjust the mail flow policy accordingly. 

When combined with an access rule (ACCEPT or REJECT), the parameters listed 
in 

 are predefined as the following four mail flow policies 

for each public listener you create:

$ACCEPTED

$BLOCKED

$THROTTLED

$TRUSTED

To access the predefined mail flow policies for a listener:

Access the GUI. (See 

.) 

Click Mail Policies > HAT Overview. 

The Overview page is displayed. If listeners are configured, the Host Access 
Table overview page defined for the first alphabetical listener is displayed. 
Select the desired listener from the Listener list.