Cisco Cisco Email Security Appliance C160 Mode D'Emploi

Note that the default policy will always be shown when you search for any user, 
because, by definition, if a sender or recipient does not match any other 
configured policies, it will always match the default policy. 

Using the steps shown in the two examples above, you can begin to create and 
configure policies on a managed exception basis. In other words, after evaluating 
your organization’s needs you can configure policies so that the majority of 
messages will be handled by the default policy. You can then create additional 
“exception” policies for specific users or user groups, managing the differing 
policies as needed. In this manner, message splintering will be minimized and you 
are less likely to impact system performance from the processing of each splinter 
message in the work queue. 

You can define policies based on your organizations’ or users’ tolerance for spam, 
viruses, and policy enforcement. 

 outlines several example 

policies. “Aggressive” policies are designed to minimize the amount of spam and 
viruses that reach end-users mailboxes. “Conservative” policies are tailored to 
avoid false positives and prevent users from missing messages, regardless of 
policies. 

Positively identified spam: 
Drop

Suspected spam: Quarantine

Marketing mail: Deliver and 
prepend “

[Marketing]

” to 

the subject messages

Positively identified spam: Quarantine

Suspected spam: Deliver and prepend 
“

[Suspected Spam]

” to the subject of 

messages

Marketing mail: Disabled