Руководство Пользователя для Cisco Cisco Email Security Appliance C170
6-30
Cisco IronPort AsyncOS 7.6 for Email Configuration Guide
OL-25136-01
Chapter 6 Email Security Manager
Creating New Content Filters
In this part of the example, you will create three new content filters to be used in the Incoming Mail
Policy table. All of these content filters will be editable by delegated administrators belonging to the
Policy Administration custom user role. You will create the following:
Policy table. All of these content filters will be editable by delegated administrators belonging to the
Policy Administration custom user role. You will create the following:
Step 1
“scan_for_confidential”
This filter will scan messages for the string “confidential.” If the string is found, a copy of the
message will be sent to email alias
message will be sent to email alias
hr@example.com
, and the message will be sent to the Policy
quarantine area.
Step 2
“no_mp3s”
This filter will strip MP3 attachments and notify the recipients that an MP3 file was stripped.
Step 3
“ex_employee”
This content filter will scan for messages sent to a specific envelope recipient address (an
ex-employee). If the message matches, a specific notification message will be sent to the sender of
the message and then the message will be bounced.
ex-employee). If the message matches, a specific notification message will be sent to the sender of
the message and then the message will be bounced.
After creating the content filters, you will then configure each of the policies (including the default
policy) to enable the specific content filters in differing combinations.
policy) to enable the specific content filters in differing combinations.
Scan for Confidential
The first example content filter contains one condition and two actions.
Step 1
Click the Mail Policies tab.
Step 2
Click Incoming Content Filters.
The Incoming Content Filters page is displayed. On newly installed or upgraded systems, no content
filters are defined by default.
filters are defined by default.
Figure 6-17
Incoming Content Filters Page
Step 3
Click the Add Filter button.
The Add Content Filter page is displayed.
Step 4
In the Name field, type
scan_for_confidential
as the name of the new filter.
Filter names can contain ASCII characters, numbers, underscores or dashes. The first character of a
content filter name must be a letter or an underscore.
content filter name must be a letter or an underscore.
Step 5
Click the Editable By (Roles) link, select the Policy Administrator and click OK.
Delegated administrators who belong to the Policy Administrator user role will be able to edit this
content filter and use it in their mail policies.
content filter and use it in their mail policies.
Step 6
In the Description field, type the description. For example:
scan all incoming mail for the string
‘confidential’
.