Cisco Cisco Email Security Appliance X1050 Guía Del Usuario
10-11
Cisco IronPort AsyncOS 7.6 for Email Configuration Guide
OL-25136-01
Chapter 10 Outbreak Filters
Managing Outbreak Filters (GUI)
Log in to the Graphical User Interface (GUI), select Security Services in the menu, and click Outbreak
Filters.
Filters.
Figure 10-2
Outbreak Filters Main Page
The Outbreak Filters page shows two sections: the Outbreak Filters Overview and a listing of current
Outbreak Filter Rules (if any).
Outbreak Filter Rules (if any).
In
, Outbreak Filters are enabled, Adaptive Scanning is enabled, and the maximum message
size is set to 512k. To change these settings, click Edit Global Settings For more information about
editing Global Settings, see
editing Global Settings, see
.
T=10
min
min
Outbreak Rule
Quarantine messages that have
.zip (exe) files greater than 50
KB
.zip (exe) files greater than 50
KB
Any message with .zip (exe) files that
are less than 50 KB would be released
from quarantine
are less than 50 KB would be released
from quarantine
T=20
min
min
Outbreak Rule
Quarantine messages that have
.zip (exe) files between 50 to 55
KB, and have “Price” in the file
name
.zip (exe) files between 50 to 55
KB, and have “Price” in the file
name
Any message that does not match this
criteria would be released from
quarantine
criteria would be released from
quarantine
T=12
hours
hours
Outbreak Rule
Scan against new signature
All remaining messages are scanned
against the latest anti-virus signature
against the latest anti-virus signature
Table 10-3
Example Rules for an Outbreak Lifecycle (Continued)
Time
Rule Type
Rule Description
Action