User Guide
Contents
x
AsyncOS 9.1.2 for Cisco Email Security Appliances User Guide
Enabling Different Anti-Spam Scanning Engines in Different Mail Policies: Configuration
Example
13-12
Protecting Appliance-Generated Messages From the Spam Filter 13-14
Headers Added During Anti-Spam Scanning 13-14
Reporting Incorrectly Classified Messages to Cisco Systems 13-15
Determining Sender IP Address In Deployments with Incoming Relays 13-15
Example Environments with Incoming Relays 13-15
Configuring the Appliance to Work with Incoming Relays 13-17
How Incoming Relays Affect Functionality 13-21
Configuring Logs to Specify Which Headers Are Used 13-23
Monitoring Rules Updates 13-23
Testing Anti-Spam 13-24
Sending an Email to the Appliance to Test Cisco Anti-Spam 13-25
Ways Not to Test Anti-Spam Efficacy 13-26
CHAPTER
14 Outbreak Filters 14-1
Overview of Outbreak Filters 14-1
How Outbreak Filters Work 14-2
Delaying, Redirecting, and Modifying Messages 14-2
Threat Categories 14-2
Cisco Security Intelligence Operations 14-3
Context Adaptive Scanning Engine 14-4
Delaying Messages 14-4
Redirecting URLs 14-5
Modifying Messages 14-6
Types of Rules: Adaptive and Outbreak 14-6
Outbreaks 14-7
Threat Levels 14-7
How the Outbreak Filters Feature Works 14-8
Message Scoring 14-9
Dynamic Quarantine 14-10
Managing Outbreak Filters 14-11
Configuring Outbreak Filters Global Settings 14-12
Outbreak Filters Rules 14-15
The Outbreak Filters Feature and Mail Policies 14-15
The Outbreak Filters Feature and the Outbreak Quarantine 14-21
Monitoring Outbreak Filters 14-23
Outbreak Filters Report 14-23