Cisco Cisco Email Security Appliance X1070 ユーザーガイド
2-74
Cisco IronPort AsyncOS 7.6 for Email Advanced Configuration Guide
OL-25137-01
Chapter 2 Configuring Routing and Delivery Features
Note
For outgoing mail, RSA Email Data Loss Prevention scanning takes place after the Outbreak Filters
stage.
stage.
Table 2-11
Email Pipeline for the Cisco IronPort Appliance: Receiving Email Features
Feature
Description
Host Access Table (HAT)
Host DNS Sender Verification
Sender Groups
Envelope Sender Verification
Sender Verification Exception Table
Mail Flow Policies
ACCEPT, REJECT, RELAY, or TCPREFUSE
connections
connections
Maximum outbound connections
Maximum concurrent inbound connections per IP address
Maximum message size and messages per connection
Maximum recipients per message and per hour
TCP listen queue size
TLS: no/preferred/required
SMTP AUTH: no/preferred/required
Drop email with malformed FROM headers
Always accept or reject mail from entries in the Sender
Verification Exception Table.
Verification Exception Table.
SenderBase on/off (IP profiling/flow control)
Received Header
Adds a received header to accepted email: on/off.
Default Domain
Adds default domain for “bare” user addresses.
Bounce Verification
Used to verify incoming bounce messages as legitimate.
Domain Map
Rewrites the Envelope Recipient for each recipient in a
message that matches a domain in the domain map table.
message that matches a domain in the domain map table.
Recipient Access Table (RAT)
(Public listeners only) ACCEPT or REJECT recipients in
RCPT TO
plus Custom SMTP Response. Allow special
recipients to bypass throttling.
Alias tables
Rewrites the Envelope Recipient. (Configured
system-wide.
system-wide.
aliasconfig
is not a subcommand of
listenerconfig
.)
LDAP Recipient Acceptance
LDAP validation for recipient acceptance occurs within
the SMTP conversation. If the recipient is not found in the
LDAP directory, the message is dropped or bounced.
LDAP validation can be configured to occur within the
work queue instead.
the SMTP conversation. If the recipient is not found in the
LDAP directory, the message is dropped or bounced.
LDAP validation can be configured to occur within the
work queue instead.