Cisco Cisco Email Security Appliance C160 Mode D'Emploi
Chapter 6 Email Security Manager
6-8
Cisco IronPort AsyncOS 7.5 for Email Configuration Guide
OL-25136-01
Policy matching and message splintering in Email Security Manager policies
obviously affect how you manage the message processing available on the
appliance.
obviously affect how you manage the message processing available on the
appliance.
Managed Exceptions
Because the iterative processing of each splinter message impacts performance,
Cisco recommends using the Incoming and Outgoing Mail Policies tables of
Email Security Manager to configure policies on a managed exception basis. In
other words, evaluate your organization’s needs and try to configure the feature
so that the majority of messages will be handled by the default policy and the
minority of messages will be handled by a few additional “exception” policies. In
this manner, message splintering will be minimized and you are less likely to
impact system performance from the processing of each splinter message in the
work queue.
Cisco recommends using the Incoming and Outgoing Mail Policies tables of
Email Security Manager to configure policies on a managed exception basis. In
other words, evaluate your organization’s needs and try to configure the feature
so that the majority of messages will be handled by the default policy and the
minority of messages will be handled by a few additional “exception” policies. In
this manner, message splintering will be minimized and you are less likely to
impact system performance from the processing of each splinter message in the
work queue.
Contents of Policies
Email Security Manager tables match incoming or outgoing messages for specific
groups of users (Envelope Recipients, Envelope Sender, From: header, or
Reply-To: header) and map them to specific settings for the following features:
groups of users (Envelope Recipients, Envelope Sender, From: header, or
Reply-To: header) and map them to specific settings for the following features:
•
Anti-Spam Scanning — See
for more information.
•
Anti-Virus Scanning — See
for more information.
•
Content Filters — See
for more
information.
•
Outbreak Filters
Cisco IronPort’s Outbreak Filters feature is a predictive security service that
provides a “first line of defense” against new virus, phishing, and scam
outbreaks by quarantining suspicious messages until traditional anti-virus
and anti-spam security services can be updated to detect them. You can enable
or disable Outbreak filters for given recipients, and also define the file types
that will bypass the Outbreak Filters feature in Email Security Manager. See
provides a “first line of defense” against new virus, phishing, and scam
outbreaks by quarantining suspicious messages until traditional anti-virus
and anti-spam security services can be updated to detect them. You can enable
or disable Outbreak filters for given recipients, and also define the file types
that will bypass the Outbreak Filters feature in Email Security Manager. See
for more information.
•
Data Loss Prevention — See
for more
information.