Cisco Cisco Email Security Appliance C160 Mode D'Emploi

In this part of the example, you will create three new content filters to be used in 
the Incoming Mail Policy table. All of these content filters will be editable by 
delegated administrators belonging to the Policy Administration custom user role. 
You will create the following:

“scan_for_confidential”

This filter will scan messages for the string “confidential.” If the string is 
found, a copy of the message will be sent to email alias 

hr@example.com

, and 

the message will be sent to the Policy quarantine area. 

“no_mp3s” 

This filter will strip MP3 attachments and notify the recipients that an MP3 
file was stripped. 

“ex_employee”

This content filter will scan for messages sent to a specific envelope recipient 
address (an ex-employee). If the message matches, a specific notification 
message will be sent to the sender of the message and then the message will 
be bounced. 

Repaired messages: Deliver

Encrypted messages: Drop

Unscannable messages: 
Drop

Infectious messages: Drop 

Repaired messages: Deliver

Encrypted messages: Quarantine

Unscannable messages: Quarantine

Infectious messages: Drop 

Enabled, no specific 
filename extensions or 
domains allowed to bypass

Enable message 
modification for all 
messages

Enabled with specific filename 
extensions or domains allowed to 
bypass

Enable message modification for 
unsigned messages