Cisco Cisco Email Security Appliance C170 Guia Do Utilizador
7-30
User Guide for AsyncOS 9.8 for Cisco Email Security Appliances
Chapter 7 Defining Which Hosts Are Allowed to Connect Using the Host Access Table (HAT)
Verifying Senders
Implementing More Stringent Throttling Settings for Unverified Senders
Procedure
Step 1
Create a new mail flow policy (for this example, it is named THROTTLEMORE) and configure it with
more stringent throttling settings.
more stringent throttling settings.
a.
On the Mail Flow Policies page, click Add Policy
b.
Enter a name for the mail flow policy, and select Accept as the Connection Behavior.
c.
Configure the policy to throttle mail.
d.
Submit and commit your changes.
Step 2
Create a new sender group (for this example, it is named UNVERIFIED) and configure it to use the
THROTTLEMORE policy:
THROTTLEMORE policy:
a.
On the HAT Overview page, click Add Sender Group
b.
Select the THROTTLEMORE policy from the list.
c.
Check the “Connecting host PTR record does not exist in DNS” checkbox under Connecting Host
DNS Verification.
DNS Verification.
d.
Submit and commit your changes.
Defining Messages to Send to Unverified Senders Using the ACCEPTED Mail Flow Policy
Procedure
Step 1
Select Mail Policies > Mail Flow Policies.
Step 2
On the Mail Flow Policies page, click on the ACCEPTED mail flow policy.
Step 3
Scroll down to the Sender Verification section.
Step 4
In the Envelope Sender DNS Verification section, do the following:
•
Select On to enable envelope sender DNS verification for this mail flow policy.
•
You may also define custom SMTP code and responses.
Step 5
In the Use Domain Exception Table section, select On to enable the domain exception table.
Step 6
Submit and commit your changes.
Excluding Unverified Senders from Sender Verification Rules Based on Sender’s Email Address
Procedure
Step 1
Select Mail Policies > Exception Table.