Cisco Cisco Email Security Appliance C160 Mode D'Emploi
29-25
Cisco AsyncOS 8.0.2 for Email User Guide
Chapter 29 System Administration
Alerts
appliance. You can specify, at a much more granular level, which alert messages are sent to which users
and for which severity of event they are sent. Manage alerts via the System Administration > Alerts page
in the GUI (or via the
and for which severity of event they are sent. Manage alerts via the System Administration > Alerts page
in the GUI (or via the
alertconfig
command in the CLI).
Alerting Overview
The alerting feature consists of three main parts:
•
Alerts - consist of an Alert Recipient (email addresses for receiving alerts), and the alert notification
(severity and alert type) sent to the recipient.
(severity and alert type) sent to the recipient.
•
Alert Settings - specify global behavior for the alerting feature, including alert sender (FROM:)
address, seconds to wait between sending duplicate alerts, and whether to enable AutoSupport (and
optionally send weekly AutoSupport reports).
address, seconds to wait between sending duplicate alerts, and whether to enable AutoSupport (and
optionally send weekly AutoSupport reports).
•
Top Alerts - a list of the latest alerts generated by the appliance.
Alerts: Alert Recipients, Alert Classifications, and Severities
Alerts are email messages or notifications containing information about a specific function (or alert
classification) or functions such as a hardware or anti-virus problem, sent to an alert recipient. An alert
recipient is simply an email address to which the alert notifications are sent. The information contained
in the notification is determined by an alert classification and a severity. You can specify which alert
classifications, at which severity, are sent to any alert recipient. The alerting engine allows for granular
control over which alerts are sent to which alert recipients. For example, you can configure the system
to send only specific alerts to an alert recipient, configuring an alert recipient to receive notifications
only when Critical (severity) information about the System (alert type) is sent. You can also configure
general settings (see
classification) or functions such as a hardware or anti-virus problem, sent to an alert recipient. An alert
recipient is simply an email address to which the alert notifications are sent. The information contained
in the notification is determined by an alert classification and a severity. You can specify which alert
classifications, at which severity, are sent to any alert recipient. The alerting engine allows for granular
control over which alerts are sent to which alert recipients. For example, you can configure the system
to send only specific alerts to an alert recipient, configuring an alert recipient to receive notifications
only when Critical (severity) information about the System (alert type) is sent. You can also configure
general settings (see
See
for a complete list of alerts.
Alert Classifications
AsyncOS sends the following alert classifications:
•
System
•
Hardware
•
Updater
•
Outbreak Filters
•
Anti-Virus
•
Anti-Spam
•
Directory Harvest Attack Prevention
Severities
Alerts can be sent for the following severities:
•
Critical: Requires immediate attention.
•
Warning: Problem or error requiring further monitoring and potentially immediate attention.
•
Information: Information generated in the routine functioning of this device.