Cisco Cisco Email Security Appliance X1050
2
Release Notes for AsyncOS 9.7 for Cisco Email Security Appliances
Changes in Behavior
Changes in Behavior
LDAP
LDAP queries that return certain error codes such as Unavailable, Busy, or
Operations Error, now fall back to a subsequent LDAP server listed for
failover. Previously, failover occurred only if the connection to the LDAP
server failed.
Operations Error, now fall back to a subsequent LDAP server listed for
failover. Previously, failover occurred only if the connection to the LDAP
server failed.
Option to accept or reject
ARP replies with a
multicast address
ARP replies with a
multicast address
While configuring ethernet media settings using the
etherconfig
command in CLI, you can now specify whether to accept or reject ARP
replies with a multicast address.
replies with a multicast address.
Support for RAR 5.0
Archive Format
Archive Format
Cisco Email Security appliance now supports scanning of RAR 5.0 files.
Changes in SMTP
Call-Ahead Server Profile
Settings
Call-Ahead Server Profile
Settings
While setting up an SMTP Call-Ahead Server Profile, you can now
configure the appliance to reject a connection with custom SMTP response
(code and text) for validation failures.
configure the appliance to reject a connection with custom SMTP response
(code and text) for validation failures.
Changes in Outbreak
Filter Settings
Filter Settings
While enabling Outbreak Filter on mail policies, you can now configure
the appliance to modify the message subject even when the URL
Rewriting is disabled or the Threat Disclaimer is not set.
the appliance to modify the message subject even when the URL
Rewriting is disabled or the Threat Disclaimer is not set.
Representation of the CPU
utilization
utilization
For better representation of the CPU utilization, the parameter Total CPU
Utilization is now changed to Overall CPU Load Average (Monitor >
System Status > CPU Utilization on web interface or
Utilization is now changed to Overall CPU Load Average (Monitor >
System Status > CPU Utilization on web interface or
system status
command in CLI). Overall CPU Load Average is the average of the
appliance's CPU load in the last one minute.
appliance's CPU load in the last one minute.
Changes in
Authentication-Results
Header
Authentication-Results
Header
Authentication-Results header now includes authentication results for
SPF, DKIM, and DMARC verifications.
SPF, DKIM, and DMARC verifications.
Also, to be compliant to RFC5451, if DKIM verification is enabled and a
message is not DKIM signed, the appliance now adds “none” in the
Authentication-Result header.
message is not DKIM signed, the appliance now adds “none” in the
Authentication-Result header.
Changes in URL Filtering
URLs that were formerly labeled “Suspicious” are now labeled “Neutral.”
Only the labeling has changed; the underlying logic and processing have
not changed.
Only the labeling has changed; the underlying logic and processing have
not changed.
Receive and process
messages from domains
with malformed DMARC
records
messages from domains
with malformed DMARC
records
Cisco Email Security appliance will now be able to receive and process
messages from domains with malformed DMARC records. However, the
appliance will not perform DMARC verification of such messages.
messages from domains with malformed DMARC records. However, the
appliance will not perform DMARC verification of such messages.
Character limit for SMTP
Routes Destination
Hostnames removed
Routes Destination
Hostnames removed
While setting up SMTP Routes, you can now specify destination
hostnames of more than 45 characters.
hostnames of more than 45 characters.
Content Scanner Behavior For enhanced performance, if the Image Analysis Feature is not enabled,
content scanner will not extract images embedded in attachment files.