Cisco Cisco Email Security Appliance X1050 故障排查指南

Contents

Introduction

Background Information

Enable URL Filtering

Create URL Filtering Actions

Content Filters for Clean URLs

Content Filters for Neutral or Suspect URLs

Content Filters for Malicious URLs

Report Uncategorized and Misclassified URLs

Malicious URLs and Marketing Messages Are Not Caught by Anti-Spam or Outbreak Filters

Related Information

Introduction

This document describes how to enable URL Filtering on the Cisco Email Security Appliance
(ESA) and best practices for its use.

Background Information

When you enable URL Filtering on the ESA, you must also enable other features, dependent upon
your desired functionality. Here are some typical features that are enabled alongside URL
Filtering:

For enhanced protection against spam, the Anti-Spam Scanning feature must be enabled
globally in accordance with the applicable mail policy. This can be either the Cisco IronPort
Anti-Spam (IPAS) or the Cisco Intelligent Multi-Scan (IMS) feature.

●

For enhanced protection against malware, the Outbreak Filters or Virus Outbreak Filters
(VOF) feature must be enabled globally in accordance with the applicable mail policy.

●

For actions based on the URL reputation, or in order to enforce acceptable use policies with
the use of message and content filters, you must enable VOF globally.

●

Enable URL Filtering

In order to implement URL Filtering on the ESA, you must first enable the feature. There are two
different methods that you can use in order to enable this feature: With the use of either the GUI or
the CLI.

In order to enable URL Filtering with the use of the GUI, navigate to Security Services > URL
Filtering > Enable:

In order to enable URL Filtering with the use of the CLI, enter the websecurityconfig command:

myesa.local> websecurityconfig

Enable URL Filtering? [N]> y