Руководство Пользователя для Cisco Cisco Email Security Appliance C190
1-4
User Guide for AsyncOS 9.8 for Cisco Email Security Appliances
Chapter 1 Getting Started with the Cisco Email Security Appliance
What’s New in This Release
URL Filtering
Enhancement
Enhancement
You can now configure the appliance not to replace the URLs within
HREF tags with secure proxy URLs. However, if an end user clicks these
URLs, the end user will be redirected to the secure proxy.
HREF tags with secure proxy URLs. However, if an end user clicks these
URLs, the end user will be redirected to the secure proxy.
You can configure this option using the
websecurityadvancedconfig
command in CLI. See CLI Reference Guide for AsyncOS for Cisco Email
Security Appliances.
Security Appliances.
Option to Send Potentially
Malicious File Types for
File Analysis
Malicious File Types for
File Analysis
Cisco periodically checks for potentially malicious file types to prevent
zero day threats. If new threats are identified, details of such file types are
sent to your appliance through updater servers. If you enable this
functionality, your appliance will send such file types for analysis in
addition to the file types you have selected.
zero day threats. If new threats are identified, details of such file types are
sent to your appliance through updater servers. If you enable this
functionality, your appliance will send such file types for analysis in
addition to the file types you have selected.
Select the Other potentially malicious file types option on the File
Reputation and Analysis Settings page (Security Services > File
Reputation and Analysis > Edit Global Settings > File Analysis
section) to enable this functionality.
Reputation and Analysis Settings page (Security Services > File
Reputation and Analysis > Edit Global Settings > File Analysis
section) to enable this functionality.
For information about the new file types that are analyzed, see File
Criteria for Advanced Malware Protection Services for Cisco Content
Security Products, available from
Criteria for Advanced Malware Protection Services for Cisco Content
Security Products, available from
http://www.cisco.com/c/en/us/support/security/email-security-appliance/
products-user-guide-list.html
products-user-guide-list.html
Note
In order to access this document, you must have a Cisco customer
account with a support contract. To register, visit
account with a support contract. To register, visit
.
Content Scanning Engine
Update
Update
The content scanning engine is updated in this release. Going forward, all
the content scanning engine updates are automatically available through
the update server. See
the content scanning engine updates are automatically available through
the update server. See
.
Image Analysis Scanning
Engine Update
Engine Update
The image analysis scanning engine is updated in this release.
Cloudmark Anti-spam
Engine Update
Engine Update
The Cloudmark anti-spam engine is updated.
New Quarantine retention
time option
time option
You can now specify a retention time in minutes for all policy, virus, and
outbreak quarantines including the File Analysis quarantine.
outbreak quarantines including the File Analysis quarantine.
LDAP
LDAP queries that return certain error codes such as Unavailable, Busy, or
Operations Error, now fall back to a subsequent LDAP server listed for
failover. Previously, failover occurred only if the connection to the LDAP
server failed.
Operations Error, now fall back to a subsequent LDAP server listed for
failover. Previously, failover occurred only if the connection to the LDAP
server failed.
Option to accept or reject
ARP replies with a
multicast address
ARP replies with a
multicast address
While configuring ethernet media settings using the
etherconfig
command in CLI, you can now specify whether to accept or reject ARP
replies with a multicast address. Use the
replies with a multicast address. Use the
MULTICAST
subcommand to
configure this functionality. See
.
Support for RAR 5.0
Archive Format
Archive Format
Cisco Email Security appliance now supports scanning of RAR 5.0 files.
Changes in SMTP
Call-Ahead Server Profile
Settings
Call-Ahead Server Profile
Settings
While setting up an SMTP Call-Ahead Server Profile, you can now
configure the appliance to reject a connection with custom SMTP response
(code and text) for validation failures. See
configure the appliance to reject a connection with custom SMTP response
(code and text) for validation failures. See