Cisco Cisco Email Security Appliance C160 ユーザーガイド
15-16
Cisco IronPort AsyncOS 7.6 for Email Configuration Guide
OL-25136-01
Chapter 15 System Administration
Alerting Overview
The alerting feature consists of two main parts:
•
Alerts - consist of an Alert Recipient (email addresses for receiving alerts), and the alert notification
(severity and alert type) sent to the recipient.
(severity and alert type) sent to the recipient.
•
Alert Settings - specify global behavior for the alerting feature, including alert sender (FROM:)
address, seconds to wait between sending duplicate alerts, and whether to enable AutoSupport (and
optionally send weekly AutoSupport reports).
address, seconds to wait between sending duplicate alerts, and whether to enable AutoSupport (and
optionally send weekly AutoSupport reports).
Alerts: Alert Recipients, Alert Classifications, and Severities
Alerts are email messages or notifications containing information about a specific function (or alert
classification) or functions such as a hardware or anti-virus problem, sent to an alert recipient. An alert
recipient is simply an email address to which the alert notifications are sent. The information contained
in the notification is determined by an alert classification and a severity. You can specify which alert
classifications, at which severity, are sent to any alert recipient. The alerting engine allows for granular
control over which alerts are sent to which alert recipients. For example, you can configure the system
to send only specific alerts to an alert recipient, configuring an alert recipient to receive notifications
only when Critical (severity) information about the System (alert type) is sent. You can also configure
general settings (see
classification) or functions such as a hardware or anti-virus problem, sent to an alert recipient. An alert
recipient is simply an email address to which the alert notifications are sent. The information contained
in the notification is determined by an alert classification and a severity. You can specify which alert
classifications, at which severity, are sent to any alert recipient. The alerting engine allows for granular
control over which alerts are sent to which alert recipients. For example, you can configure the system
to send only specific alerts to an alert recipient, configuring an alert recipient to receive notifications
only when Critical (severity) information about the System (alert type) is sent. You can also configure
general settings (see
See
for a complete list of alerts.
Alert Classifications
AsyncOS sends the following alert classifications:
•
System
•
Hardware
•
Updater
•
Outbreak Filters
•
Anti-Virus
•
Anti-Spam
•
Directory Harvest Attack Prevention
Severities
Alerts can be sent for the following severities:
•
Critical: Requires immediate attention.
•
Warning: Problem or error requiring further monitoring and potentially immediate attention.
•
Information: Information generated in the routine functioning of this device.
Alert Settings
Alert settings control the general behavior and configuration of alerts, including:
•
The RFC 2822 Header From: when sending alerts (enter an address or use the default
“alert@<hostname>”). You can also set this via the CLI, using the
“alert@<hostname>”). You can also set this via the CLI, using the
alertconfig -> from
command.