Cisco Cisco Email Security Appliance C170 White Paper

The defang action will insert additional characters, rendering the URL

unclickable. The URL could also be replaced by text (“malicious URL

removed”) or be rewritten for click-time scanning by the Cisco Cloud

Web Security-powered cloud proxy.

Any of the Content Filter actions can be performed on messages that

match the condition set on this Content Filter.

•

Quarantine the message

•

Add Disclaimer Text above the message body, warning the recipient

•

Send Copy (Bcc:) to send a copy to a compliance or security team

•

Add/Edit Header to prepend a warning to the message subject

•

Bounce the message

•

Drop the message

•

And more

Step 7 Click OK

Step 8 Click Submit

Block URLs Based on Web Category

Create an incoming Content Filter based on unwanted web category

results and replace it with a text notice.

Step 1 Select Mail Policies > Incoming Content Filters > Add Filter

You should see the following screen:

Step 2 Give the filter a descriptive name with no spaces and a good

description

•

Block_URL_Category

•

Block URLs that are in unwanted categories

Cisco Email Security How-To Guide

How-To Protect Against URL-Based Attacks

Cisco Public