Cisco Cisco Email Security Appliance X1070
3
Release Notes for AsyncOS 9.7.2 for Cisco Email Security Appliances
What’s New
What’s New in AsyncOS 9.7
Option to Send Potentially
Malicious File Types for
File Analysis
Malicious File Types for
File Analysis
Cisco periodically checks for potentially malicious file types to prevent
zero day threats. If new threats are identified, details of such file types are
sent to your appliance through updater servers. If you enable this
functionality, your appliance will send such file types for analysis in
addition to the file types you have selected.
zero day threats. If new threats are identified, details of such file types are
sent to your appliance through updater servers. If you enable this
functionality, your appliance will send such file types for analysis in
addition to the file types you have selected.
Select the Other potentially malicious file types option on the File
Reputation and Analysis Settings page (Security Services > File
Reputation and Analysis > Edit Global Settings > File Analysis
section) to enable this functionality.
Reputation and Analysis Settings page (Security Services > File
Reputation and Analysis > Edit Global Settings > File Analysis
section) to enable this functionality.
For information about the new file types that are analyzed, see File
Criteria for Advanced Malware Protection Services for Cisco Content
Security Products, available from
Criteria for Advanced Malware Protection Services for Cisco Content
Security Products, available from
http://www.cisco.com/c/en/us/support/security/email-security-appliance/
products-user-guide-list.html
products-user-guide-list.html
Note
In order to access this document, you must have a Cisco customer
account with a support contract. To register, visit
account with a support contract. To register, visit
.
Feature
Description
Content Scanning Engine
Update
Update
The content scanning engine is updated in this release. Going forward, all
the content scanning engine updates are automatically available through
the update server.
the content scanning engine updates are automatically available through
the update server.
Image Analysis Scanning
Engine Update
Engine Update
The image analysis scanning engine is updated in this release.
Cloudmark Anti-spam
Engine Update
Engine Update
The Cloudmark anti-spam engine is updated in this release.
Non-Spam Quarantines
You can now specify a retention time in minutes for all policy, virus, and
outbreak quarantines including the File Analysis quarantine.
outbreak quarantines including the File Analysis quarantine.
LDAP
LDAP queries that return certain error codes such as Unavailable, Busy, or
Operations Error, now fall back to a subsequent LDAP server listed for
failover. Previously, failover occurred only if the connection to the LDAP
server failed.
Operations Error, now fall back to a subsequent LDAP server listed for
failover. Previously, failover occurred only if the connection to the LDAP
server failed.
Option to accept or reject
ARP replies with a
multicast address
ARP replies with a
multicast address
While configuring ethernet media settings using the
etherconfig
command in CLI, you can now specify whether to accept or reject ARP
replies with a multicast address.
replies with a multicast address.
Support for RAR 5.0
Archive Format
Archive Format
Cisco Email Security appliance now supports scanning of RAR 5.0 files.
Changes in SMTP
Call-Ahead Server Profile
Settings
Call-Ahead Server Profile
Settings
While setting up an SMTP Call-Ahead Server Profile, you can now
configure the appliance to reject a connection with custom SMTP response
(code and text) for validation failures.
configure the appliance to reject a connection with custom SMTP response
(code and text) for validation failures.