Cisco Cisco Email Security Appliance C370D 用户指南
38-4
Cisco AsyncOS 8.0.2 for Email User Guide
Chapter 38 Centralizing Services on a Cisco Content Security Management Appliance
About Centralizing Policy, Virus, and Outbreak Quarantines
About Centralizing Policy, Virus, and Outbreak Quarantines
•
•
•
•
•
Centralized Policy, Virus, and Outbreak Quarantines
You can centralize policy, virus, and outbreak quarantines on a Security Management appliance.
Messages are processed by Email Security appliances but are stored in quarantines on the Security
Management appliance.
Messages are processed by Email Security appliances but are stored in quarantines on the Security
Management appliance.
Centralizing policy, virus, and outbreak quarantines offers the following benefits:
•
Administrators can manage quarantined messages from multiple Email Security appliances in one
location.
location.
•
Quarantined messages are stored behind the firewall instead of in the DMZ, reducing security risk.
•
Centralized quarantines can be backed up using the standard backup functionality on the Security
Management appliance.
Management appliance.
For complete information, see the user guide or online help for your Security Management appliance.
Restrictions and Limitations of Centralized Policy, Virus, and Outbreak Quarantines
•
On each Email Security appliance, either all policy, virus, and outbreak quarantines must be
centralized or all must be stored locally.
centralized or all must be stored locally.
•
Because scanning engines are not available on Security Management appliances, you cannot
manually test messages in policy, virus, or outbreak quarantines for viruses.
manually test messages in policy, virus, or outbreak quarantines for viruses.
Requirements for Centralized Policy, Virus, and Outbreak Quarantines in Cluster Configurations
You can enable centralized policy, virus, and outbreak quarantines at any level for clustered appliances.
Requirements:
•
Before you enable centralized policy, virus, and outbreak quarantines on an Email Security
appliance at a particular level (machine, group, or cluster), all appliances that belong to the same
level must first be added to the Security Management appliance.
appliance at a particular level (machine, group, or cluster), all appliances that belong to the same
level must first be added to the Security Management appliance.
•
Content and message filters and DLP message actions must be configured at the same level and not
overridden at any level below that level.
overridden at any level below that level.
•
Centralized policy, virus, and outbreak quarantines settings must be configured at the same level and
not be overridden at any level below the configured level.
not be overridden at any level below the configured level.
•
Ensure that the interface to be used for communications with the Security Management appliance
has the same name on all appliances in the group or cluster.
has the same name on all appliances in the group or cluster.
For example: