Cisco Cisco Email Security Appliance X1050 Guía Del Usuario
3-26
User Guide for AsyncOS 9.8 for Cisco Email Security Appliances
Chapter 3 Setup and Installation
Using the System Setup Wizard
Enable the Web Interface
In the next portion of the
systemsetup
command, you enable the web interface for the appliance (for the
Management Ethernet interface). You can also choose to run the web interface over secure HTTP
(
(
https
). If you choose to use HTTPS, the system will use a demonstration certificate until you upload
your own certificate. For more information, see
Configure the DNS Settings
Next, you configure the DNS (Domain Name Service) settings. Cisco AsyncOS contains a
high-performance internal DNS resolver/cache that can query the Internet’s root servers directly, or the
system can use your own DNS servers. If you choose to use your own servers, you will need to supply
the IP address and hostname of each DNS server. You can enter as many DNS servers as you need (each
server will have a priority of 0.). By default,
high-performance internal DNS resolver/cache that can query the Internet’s root servers directly, or the
system can use your own DNS servers. If you choose to use your own servers, you will need to supply
the IP address and hostname of each DNS server. You can enter as many DNS servers as you need (each
server will have a priority of 0.). By default,
systemsetup
prompts you to enter the addresses for your
own DNS servers.
Create a Listener
A “listener” manages inbound email processing services that will be configured on a particular IP
interface. Listeners only apply to email entering the Email Security appliance — either from your
internal systems or from the Internet. Cisco AsyncOS uses listeners to specify criteria that messages
must meet in order to be accepted and relayed to recipient hosts. You can think of a listener as an email
listener (or even a “SMTP daemon”) running for IP addresses you specified above.
interface. Listeners only apply to email entering the Email Security appliance — either from your
internal systems or from the Internet. Cisco AsyncOS uses listeners to specify criteria that messages
must meet in order to be accepted and relayed to recipient hosts. You can think of a listener as an email
listener (or even a “SMTP daemon”) running for IP addresses you specified above.
For C370, C670, X1070, C380, C680, C390, and C690 appliances: By default, the
systemsetup
command configures two listeners — one public and one private. (For more information on the types of
listeners available, see
listeners available, see
For C170 and C190 appliances: By default, the
systemsetup
command configures one public listener
for both receiving mail from the Internet and for relaying email from your internal network. See
.
When you define a listener, you specify the following attributes:
•
A name (nickname) created by you to refer to the listener later. For example, the listener that accepts
email from your internal systems to be delivered to the Internet may be called OutboundMail.
email from your internal systems to be delivered to the Internet may be called OutboundMail.
•
One of the IP interfaces (that you created earlier in the
systemsetup
command) on which to receive
email.
•
The name of the machine(s) to which you want to route email (public listeners only). (This is the
first
first
smtproutes
entry. See
.)
•
Whether or not to enable filtering based on SenderBase Reputation Scores (SBRS) for public
listeners. If enabled, you are also prompted to select between Conservative, Moderate, or Aggressive
settings.
listeners. If enabled, you are also prompted to select between Conservative, Moderate, or Aggressive
settings.
•
Rate-limiting per host: the maximum number of recipients per hour you are willing to receive from
a remote host (public listeners only).
a remote host (public listeners only).
•
The recipient domains or specific addresses you want to accept email for (public listeners) or the
systems allowed to relay email through the appliance (private listeners). (These are the first
Recipient Access Table and Host Access Table entries for a listener. See
systems allowed to relay email through the appliance (private listeners). (These are the first
Recipient Access Table and Host Access Table entries for a listener. See
information.)