Cisco Cisco Email Security Appliance C160 Mode D'Emploi

messages will be handled by a few additional “exception” policies. In this manner, message splintering 
will be minimized and you are less likely to impact system performance from the processing of each 
splinter message in the work queue. 

Email Security Manager tables match incoming or outgoing messages for specific groups of users 
(Envelope Recipients, Envelope Sender, From: header, or Reply-To: header) and map them to specific 
settings for the following features: 

Anti-Spam Scanning — See 

 for more information. 

Anti-Virus Scanning — See 

 for more information. 

Content Filters — See 

 for more information. 

Outbreak Filters 

Cisco IronPort’s Outbreak Filters feature is a predictive security service that provides a “first line of 
defense” against new virus, phishing, and scam outbreaks by quarantining suspicious messages until 
traditional anti-virus and anti-spam security services can be updated to detect them. You can enable 
or disable Outbreak filters for given recipients, and also define the file types that will bypass the 
Outbreak Filters feature in Email Security Manager. See 

 for more 

information.

Data Loss Prevention — See 

 for more information.

 illustrates the Email Security Manager in the GUI that maps users defined in a policy to 

specific Anti-Spam, Anti-Virus, Outbreak Filter, DLP, and Content Filters settings. 

Email Security Manager policies allow you to create content filters to be applied to messages on a 
per-recipient or per-sender basis. Content filters are similar to message filters, except that they are 
applied later in the email pipeline — after a message has been “splintered” into a number of separate