Cisco Cisco Content Security Management Appliance M160 Guía Del Usuario
4-7
AsyncOS 8.3.6 for Cisco Content Security Management User Guide
Chapter 4 Using Centralized Email Security Reporting
Understanding the Email Reporting Pages
The Internal Users provides information about the mail sent
and received by your internal users per email address. A
single user can have multiple email addresses. The email
addresses are not combined in the report.
and received by your internal users per email address. A
single user can have multiple email addresses. The email
addresses are not combined in the report.
For more information, see the
.
The DLP Incident Summary page shows information on the
incidents of data loss prevention (DLP) policy violations
occurring in outgoing mail.
incidents of data loss prevention (DLP) policy violations
occurring in outgoing mail.
For more information, see the
.
The Message Filters page shows information about the top
message filter matches (which message filters had the largest
number of matching messages) for incoming and outgoing
messages.
message filter matches (which message filters had the largest
number of matching messages) for incoming and outgoing
messages.
The High Volume Mail page identifies attacks involving a
large number of messages from a single sender, or with
identical subjects, within a moving one-hour period.
large number of messages from a single sender, or with
identical subjects, within a moving one-hour period.
For more information, see the
.
The Content Filters page shows information about the top
incoming and outgoing content filter matches (which content
filter had the most matching messages). This page also
displays the data as both bar charts and listings. Using the
Content Filters page, you can review your corporate policies
on a per-content-filter or per-user basis.
incoming and outgoing content filter matches (which content
filter had the most matching messages). This page also
displays the data as both bar charts and listings. Using the
Content Filters page, you can review your corporate policies
on a per-content-filter or per-user basis.
For more information, see the
.
The DMARC Verification page shows the top sender domains
that failed Domain-based Message Authentication, Reporting
and Conformance (DMARC) verification, and a summary of
the actions taken for incoming messages from each domain.
that failed Domain-based Message Authentication, Reporting
and Conformance (DMARC) verification, and a summary of
the actions taken for incoming messages from each domain.
For more information, see the
.
The Virus Types page provides an overview of the viruses that
are sent to and from your network. The Virus Types page
displays the viruses that have been detected by the virus
scanning engines running on the Email Security appliances
and are displayed on the Security Management appliance. Use
this report to take action against a particular virus.
are sent to and from your network. The Virus Types page
displays the viruses that have been detected by the virus
scanning engines running on the Email Security appliances
and are displayed on the Security Management appliance. Use
this report to take action against a particular virus.
For more information, see the
.
Table 4-1
Email Reporting Tab Options
Email Reporting Menu
Action