Cisco Cisco Email Security Appliance C170 Referências técnicas

When configuring the default settings for a listener’s Host Access Table, you can choose the listener’s 
SPF/SIDF conformance level and the SMTP actions (ACCEPT or REJECT) that the appliance performs, 
based on the SPF/SIDF verification results. You can also define the SMTP response that the appliance 
sends when it rejects a message.

Depending on the conformance level, the appliance performs a check against the HELO identity, MAIL 
FROM identity, or PRA identity. You can specify whether the appliance proceeds with the session 
(ACCEPT) or terminates the session (REJECT) for each of the following SPF/SIDF verification results 
for each identity check:

None. No verification can be performed due to the lack of information. 

Neutral. The domain owner does not assert whether the client is authorized to use the given identity.

SoftFail. The domain owner believes the host is not authorized to use the given identity but is not 
willing to make a definitive statement. 

Fail. The client is not authorized to send mail with the given identity. 

TempError. A transient error occurred during verification.

PermError. A permanent error occurred during verification.

SMTP Reject Banner Text 
(*)

smtp_banner_text

String

Rejected

Override SMTP Banner 
Hostname 

use_override_hostname

on | off | 

default

default

override_hostname

String

newhostname

Use TLS

tls 

on | off | 

required

on

Use anti-spam scanning

spam_check

on | off

off

Use Sophos virus 
scanning

virus_check

on | off

off

Maximum Recipients per 
Hour 

max_rcpts_per_hour

Number

5k

Maximum Recipients per 
Hour Error Code

max_rcpts_per_hour_code

Number

452

Maximum Recipients per 
Hour Text (*)

max_rcpts_per_hour_text

String

Too many

 

recipients

Use SenderBase

use_sb

on | off

on

Define SenderBase 
Reputation Score

sbrs[value1:value2]

-10.0- 10.0

sbrs[-10:-7.5]

Directory Harvest Attack 
Prevention: Maximum 
Invalid Recipients Per 
Hour

dhap_limit

Number

150