Cisco Cisco Email Security Appliance C160 Guía Del Usuario
12-13
User Guide for AsyncOS 9.7 for Cisco Email Security Appliances
Chapter 12 Anti-Virus
How to Configure the Appliance to Scan for Viruses
Figure 12-1
Options for Handling Messages Scanned for Viruses
Note
By default, Anti-Virus scanning is enabled in the $TRUSTED mail flow policy for public listeners,
which is referenced by the WHITELIST sender group. See
which is referenced by the WHITELIST sender group. See
.
Configuring the Anti-Virus Policies for Different Groups of Senders and
Recipients
Recipients
The process for editing the per-user anti-virus settings for a mail policy is essentially the same for
incoming or outgoing mail.
incoming or outgoing mail.
Individual policies (not the default) have an additional field to “Use Default” settings. Select this setting
to inherit the default mail policy settings.
to inherit the default mail policy settings.
IronPort Email Security appliance
Firewall
SMTP
with Anti-Virus scanning enabled
Internet mail
Modify message subject
Add custom header to message
Scanned – virus found,
Scanned – virus found
Scanned – virus found but
and repaired
unable to clean
Archive original message
Send notification to sender,
recipient, and/or others
Deliver message, and optionally:
Modify message subject
Add custom header to message
Modify message recipient
Modify destination host
Archive original message
Send notification to sender,
recipient, and/or others
Scanned –
Drop message, deliver message,
to a new message, or quarantine
deliver message as an attachment
Deliver
attachment dropped
The message is “known clean.”
The message could be infected.
Could not scan: encrypted
Could not scan: unscannable
found
message, and optionally:
Send custom notification to
recipient
Send custom notification to
recipient
no virus
message.