I need a solution
Hi,
How can we prevent SMG being used as an open relay, also could anybody share the best pratice for SMG product.
Thanks in advance.
0
↧
SMG as an open relay
↧
"Good Senders"-List for encrypted Attachments?
I need a solution
We receive many encrypted attachments that are legit, but also an increasing number that are viruses. And we can't block all encrypted attachments because we need to receive the important ones. So we have configured the malware policy to hold all e-mails with encrypted attachments to the Spam Quarantine, and we have to check and release the "good" e-mails manually from the Quarantine every day. This makes us a lot of stupid work.
The Reputation-List ("Local Good Sender Domain") will not work to bypass the malware scanning.
It is possible to make an improvement here? In Example, move the "encrypted Attachments"-Rule from the "Malware"-tab to the "Content"-tab, so I can create a Dictionary with "good" senders which the "encrypted"-Rule can be skipped?
Best Regards
Rolf
0
↧
↧
SMG Administrative Logging Needed
I need a solution
When does Symantec plan to provide some logging of administrative changes made within SMG? This has been the one detractor for us here in that we have some admins claiming IP's are simply "dissappearing" from the allowed TX/RX SMTP list we've setup. I'm skeptical to believe IP's are truly disappearing, but w/o any log data to support...our mentality here, sadly, is to blame the application until you can prove it's innocent. Would really like to see admin logging avail ASAP in an SMG future release.
0
↧
One quarantine email listed per end-user email?
I need a solution
Just updated to the most recent release on Friday evening (10.6.2-3) and now our spam quarantine emails to end-users (sent every four hours) are all coming one at a time instead of one email with the a list of quarantined items. If it's set to kick of at 7am and the user has four new quaratined spam emails, instead of one email with the four listed, they're getting four emails with one listed per message.
Anyone else seen this? Tried a restart again just to be sure things were clean, tried adjusting settings in the quarantine options, nothing. No other changes occurred, just the update and it began right after.
Here is the config screen:
Again, no others changes and I can't seem to make the single emails stop.
Thanks,
Jeff
0
↧
Licencias Antispam
I do not need a solution (just sharing information)
Necesito realizar una consulta, ya que soy nuevo administrando Messaging Gateway.
Quiero saber ¿que ocurre al vencer las licencias?
Segun lo que he visto en otras marcas dejas de recibir actualizaciones hasta el dia en que termina el periodo de gracia, pero sigue aplicando las configuraciones que los administradores realizan.
Me comentaron que con con Messaging Gateway el producto sigue actualizando a pesar de que las licencias estan expiradas, pero quede con esa duda y no creo que la persona que administra la plataforma tenga conocimiento de esto.
Si es asi, entonces los correos que no tenga un bloqueo para ellos, pasaran ya que no validara desde symantec
Gracias, espero haberme hecho entender.
0
↧
↧
SMG - Symantec Check Internal Email
I need a solution
Buongiorno a tutti,
all' interno della nostra architettura Exchange 2013 abbiamo due SMG esterni che hanno il ruolo di AntiSpam.
SMG Scanner and Control Center Versione 10.6.1-4
SMG Scanner Versione 10.6.1-4
Vi chiedo se c'è un modo, per la posta esterna in entrata, di far verificare ai due SMG l' esistenza o meno degli indirizzi di posta interni; o meglio, preferisco che se un indirizzo di posta @miodominio.it non esiste risponde l' antispam piuttosto che il server Exchange.
Grazie per il supporto.
0
↧
Using domain based Black list instead of IP based
I need a solution
HI
I can't use IP based blacklisting lists because of the following from this post of mine.
Symantec recommends that the SMG be installed on the gateway before all other MTAs and people at my work place decided to go aganist that for some reason.
As a result we are always under spam fire.
I am considering using third party RBLs now for further blocking SPAM right at the gateway, and needed an explanation as to whether the SMG deployed after the MTA would still be able to detect the incoming blacklisted IP address.
As of now the message audit logs shows that all our email comes from just 2-3 IPs which are the IPs belonging to our SMTP providers IP.
If I cannot use IP based RBLs then is there anyway on the SMG to use domain based DNSBLs? Which will check the incoming doman name and not the SMTP connection IP.
Because the domain name check is still done after the incoming SMTP connection has been accepted as per my understanding, so will this work?
0
↧
SMG 10.6.2-3
I need a solution
Hello, everybody!
I have one problem, the upgrade of version in SMG (from 10.6.1-4 to 10.6.2-3. ). The problems are the Quarantine Spam mail and the Maximum Summary Entries per notification, this latest is setting in 500 and it does not work. This is a bug version.
Every day, all users receive many Quarantine Spam Mails with only one spam.
In the version 10.6.1-4, All users received one email with all spams.
For more information, pls, see the next picture.
Of course, any help will be very welcome
Rgs,
Steve!
0
↧
Reject SMTP Connection log
I need a solution
Hello,
Where can I find a log with received messages, that Messaging gateway has rejected smtp connecion because (I think) they are classified as "Symantec Global Bad Senders"??
I want to know which IP is using a sender that symantec gateway is rejecting the conection
Thank you very much
0
↧
↧
Customer-specific Spam submissions service after 48hours status "INACTIVE"
I need a solution
Hello,
I'm adjusted "Spam submissions service" . In "Spam Submission" messages have "inactive" status.
as it should be?
Status bar:
0
↧
Messaging Gateway - Invalid Recipients Reject
I need a solution
Hi,
I am trying to enable Invalid Recipients Handling to Reject invalid recipients.
Although it is rejecting, I don't see the Reject message set by Messaging Gateway, instead I see the email coming from hotmail as I am using a personal hotmail account to test it. When I set it to accept all the recipients, the invalid recipient message comes from my Exchange Cas server inside my network.
How can I set the message to come from Messaging Gateway when I reject the invalid emails?
0
↧
Surge of email attacks using malicious WSF attachments
I do not need a solution (just sharing information)
Just raising awareness of this new Security Response blog post:
Surge of email attacks using malicious WSF attachments
https://www.symantec.com/connect/blogs/surge-email-attacks-using-malicious-wsf-attachments
Please do configure mail servers and mail security products to block these and other malicious attachments!
Support Perspective: W97M.Downloader Battle Plan
https://www-secure.symantec.com/connect/articles/support-perspective-w97mdownloader-battle-plan
With thanks and best regards,
Mick
0
↧
Conduit error logs from this morning
I need a solution
Hi everyone,
from this morning, I get the error conduit logs on my SMG 10.6.2.
Description error log
"Error from web server 404 - Not Found : unable to GET: https://aztec.brightmail.com/rules5/statsigs_bulk.vcdiff/1/1476343634."
These error logs are generated every few minutes.
Does anyone know what these error logs mean?
0
↧
↧
Impact of control center failure
I need a solution
Hi,
I want to understand what is the impact of the failure of a control center?
In other words :
- Does the scanner continue to process inbound/outbound mail flow without any issue?
- Where quarantine emails will be stored or queued?
- Will the definition updates be impacted?
- Will the directory access be impacted?
- Where the logs will be stored(audit logs)?
Thanks, Amine
0
↧
Customer-specific rules efficiency
I need a solution
Hi,
Can anyone share his experience whith "Customer-specific rules" efficiency?
Thanks
0
↧
Impact of control center failure
I need a solution
Hi,
I want to understand what is the impact of the failure of a control center.
In other words, when the control center fails :
- Does the scanner continue to process inbound/outbound mail flow without any issue?
- Where quarantine emails will be stored or queued?
- Will the definition updates be impacted?
- Will the directory access be impacted?
- Where the logs will be stored(audit logs)?
Thanks
0
↧
Impact of control center failure
I need a solution
Hi,
I want to understand what is the impact of the failure of a control center?
In other words :
- Does the scanner continue to process inbound/outbound mail flow without any issue?
- Where quarantine emails will be stored or queued?
- Will the definition updates be impacted?
- Will the directory access be impacted?
- Where the logs will be stored(audit logs)?
Thanks
0
↧
↧
553 Domain Blacklisted
I need a solution
We are receiving the following error message and need to know how to correct it. Checked MX Toolbox and there are no flags for the domain. Does Symatec have whitelist or delisting tool I am not finding?
host server4.inboundmx.com[216.82.242.115] said:
553-Sorry, your email address bounce-195075.247814_0_7@8acre
553-.mail-online2.com has been blacklisted. Refer to the
553-Troubleshooting page at http://www.symanteccloud.com/tro 553
ubleshooting for more information. (#5.7.1) (in reply to RCPT TO command)
Robert
Compliance Dept.
0
↧
DKIM Key Expiration
I need a solution
Hi,
When enabling DKIM signing on a domain we need to fill the "Signature expiration".
- What happens after expiry?
- From what instant does that "timer" start counting time?
- Is there any best practice for that value?
- Si this something specific to SMG or an industry standard?
Regards
0
↧
Recovery Process
I need a solution
Hi,
I have few questions about recovery/backup of SMG (virtual)
In case of a scanner failure :
- Is it better to restore from a backup or just rebuild a new scanner and point it to the CC to retrive the policies (I don't care about lost logs) ?
- Is there any official article showing how to point scanner to the conctrol center?
In case of a control center failure :
What is the correct apporach for recovery?
- Do we need to install a control center from scratch and then recover using the most recent full backup?
- Will the scanners be reconzied automatically?
- Is there any official article showing how to do that?
Thanks
0
↧