Руководство Пользователя для Cisco Cisco Content Security Management Appliance M160

 shows a typical network configuration incorporating the Security Management appliance and 

multiple DMZs. You deploy the Security Management appliance outside your DMZ, in your internal 
networks. All connections are initiated by the Security Management appliances (Cisco IronPort 
M-Series) to the managed Email Security appliances (Cisco IronPort C-Series) and managed Web 
Security appliances (Cisco IronPort S-Series). 

Corporate data centers can share a Security Management appliance to perform centralized reporting and 
message tracking for multiple Web and Email Security appliances, and centralized policy configuration 
for multiple Web Security appliances. The Security Management appliance can also be used as an 
external Cisco IronPort Spam Quarantine. 

After you connect the Email Security appliance and the Web Security appliances to a Security 
Management appliance and properly configure all appliances, AsyncOS gathers and aggregates data 
from the managed appliances. From the aggregated data, reports can be generated and an overall view 
of email and web usage can be determined.

For an excellent discussion on integrating the Security Management appliance with your Email Security 
appliances, see the “Cisco IronPort M-Series Security Management Appliance” chapter in the Cisco 
IronPort AsyncOS for Email Security Configuration Guide. (“M-Series appliance” is another term for 
the Security Management appliance.) 

The Security Management appliance cannot be placed in a cluster. However, clustered Email Security 
appliances can deliver messages to the Security Management appliance for centralized reporting and 
tracking and to store the messages in an external spam quarantine.