Cisco Cisco Email Security Appliance C170 Guia Do Utilizador

Be sure to include brackets in the query in the CLI. Brackets are not necessary when specifying a DNS 
List query in the GUI. Use the 

dnslistconfig

 command in the CLI to test a query, configure general 

settings for DNL queries, or flush the current DNS list cache. 

Note that this mechanism can be used to identify “good” connections as well as “bad” connections. For 
example, a query to query.bondedsender.org will match on connecting hosts who have posted a financial 
bond with Cisco IronPort Systems’ Bonded Sender™ program to ensure the integrity of their email 
campaign. You could modify the default WHITELIST sender group to query the Bonded Sender 
program’s DNS servers (which lists these legitimate email senders who have willingly posted bonds) and 
adjust the mail flow policy accordingly. 

When combined with an access rule (ACCEPT or REJECT), the parameters listed in 

 are predefined as the following four mail flow policies for each public listener you create:

$ACCEPTED

$BLOCKED

$THROTTLED

$TRUSTED

Access the GUI. (See 

Click Mail Policies > HAT Overview. 

The Overview page is displayed. If listeners are configured, the Host Access Table overview page 
defined for the first alphabetical listener is displayed. Select the desired listener from the Listener 
list.

Click the name of a Mail Flow Policy to view the connection behavior and parameters for that policy.

By default, C150/160 customers are prompted to create only one public listener during the 

systemsetup

 command. Public listeners created on Cisco IronPort C150/160 appliances also 

include a $RELAYED mail flow policy that is used to relay mail for internal systems (as shown 
in 

). For more information, see 

. The $RELAYLIST policy 

is shown only on private listeners on Cisco IronPort X1050/1060/1070, C650/660/670, and 
C350/360/370 appliances.