Manualsbrain.com
  1. Manuais
  2. Marcas
  3. Cisco
  4. Cisco Email Security Appliance C170
  5. Guia Do Utilizador

Cisco Cisco Email Security Appliance C170 Guia Do Utilizador

Download
Página de 1210
 
16-11
Cisco AsyncOS 9.0 for Email User Guide
 
Chapter 16      File Reputation Filtering and File Analysis
  File Reputation and File Analysis Reporting and Tracking
Ensuring That You Receive Alerts 
Ensure that the appliance is configured to send you alerts related to Advanced Malware Protection.  
You will receive alerts when: 
Related Topics 
Configuring Centralized Reporting for Advanced Malware Protection Features 
If you will centralize reporting on a Security Management appliance, see important configuration 
requirements in the Advanced Malware Protection sections in the email reporting chapter of the online 
help or user guide for your management appliance. 
File Reputation and File Analysis Reporting and Tracking 
Identifying Files by SHA-256 Hash 
Because filenames can easily be changed, the appliance generates an identifier for each file using a 
Secure Hash Algorithm (SHA-256). If an appliance processes the same file with different names, all 
instances are recognized as the same SHA-256. If multiple appliances process the same file, all instances 
of the file have the same SHA-256 identifier. 
Alert Description 
Type 
Severity 
Feature keys expire 
(As is standard for all features)
The file reputation or file analysis service is unreachable
System 
Warning
Communication with cloud services is established
System 
Info
The reputation and analysis engine is restarted by a watchdog 
service 
System Info
A file reputation verdict changes 
System 
Info
File types that can be sent for analysis have changed. You 
may want to enable upload of new file types. 
System Info 
Analysis of some file types is temporarily unavailable 
System 
Warning
Analysis of all supported file types is restored after a 
temporary outage
System Info