Cisco Cisco Email Security Appliance X1050 Guía Del Usuario
3-28
Cisco IronPort AsyncOS 7.6 for Email Configuration Guide
OL-25136-01
Chapter 3 Setup and Installation
Enable the Web Interface
In the next portion of the
systemsetup
command, you enable the web interface for the appliance (for the
Management Ethernet interface). You can also choose to run the web interface over secure HTTP
(
(
https
). If you choose to use HTTPS, the system will use a demonstration certificate until you upload
your own certificate. For more information, see “Enabling a Certificate for HTTPS” in the Cisco
IronPort AsyncOS for Email Advanced Configuration Guide.
IronPort AsyncOS for Email Advanced Configuration Guide.
Configure the DNS Settings
Next, you configure the DNS (Domain Name Service) settings. Cisco IronPort AsyncOS contains a
high-performance internal DNS resolver/cache that can query the Internet’s root servers directly, or the
system can use your own DNS servers. If you choose to use your own servers, you will need to supply
the IP address and hostname of each DNS server. You can enter as many DNS servers as you need (each
server will have a priority of 0.). By default,
high-performance internal DNS resolver/cache that can query the Internet’s root servers directly, or the
system can use your own DNS servers. If you choose to use your own servers, you will need to supply
the IP address and hostname of each DNS server. You can enter as many DNS servers as you need (each
server will have a priority of 0.). By default,
systemsetup
prompts you to enter the addresses for your
own DNS servers.
Create a Listener
A “listener” manages inbound email processing services that will be configured on a particular IP
interface. Listeners only apply to email entering the Cisco IronPort appliance — either from your
internal systems or from the Internet. Cisco IronPort AsyncOS uses listeners to specify criteria that
messages must meet in order to be accepted and relayed to recipient hosts. You can think of a listener as
an email listener (or even a “SMTP daemon”) running for IP addresses you specified above.
interface. Listeners only apply to email entering the Cisco IronPort appliance — either from your
internal systems or from the Internet. Cisco IronPort AsyncOS uses listeners to specify criteria that
messages must meet in order to be accepted and relayed to recipient hosts. You can think of a listener as
an email listener (or even a “SMTP daemon”) running for IP addresses you specified above.
X1050/1060/1070, C650/660/670 and C350/360/370 customers: By default, the
systemsetup
command configures two listeners — one public and one private. (For more information on the types of
listeners available, see
listeners available, see
C150/160 customers: By default, the
systemsetup
command configures one public listener for both
receiving mail from the Internet and for relaying email from your internal network. See
When you define a listener, you specify the following attributes:
•
A name (nickname) created by you to refer to the listener later. For example, the listener that accepts
email from your internal systems to be delivered to the Internet may be called OutboundMail.
email from your internal systems to be delivered to the Internet may be called OutboundMail.
•
One of the IP interfaces (that you created earlier in the
systemsetup
command) on which to receive
email.
•
The name of the machine(s) to which you want to route email (public listeners only). (This is the
first
first
smtproutes
entry. See “Routing Email for Local Domains” in the Cisco IronPort AsyncOS for
Email Advanced Configuration Guide for more information.)
•
Whether or not to enable filtering based on SenderBase Reputation Scores (SBRS) for public
listeners. If enabled, you are also prompted to select between Conservative, Moderate, or Aggressive
settings.
listeners. If enabled, you are also prompted to select between Conservative, Moderate, or Aggressive
settings.
•
Rate-limiting per host: the maximum number of recipients per hour you are willing to receive from
a remote host (public listeners only).
a remote host (public listeners only).
•
The recipient domains or specific addresses you want to accept email for (public listeners) or the
systems allowed to relay email through the appliance (private listeners). (These are the first
Recipient Access Table and Host Access Table entries for a listener. See
systems allowed to relay email through the appliance (private listeners). (These are the first
Recipient Access Table and Host Access Table entries for a listener. See
and
for more information.)