Email Security Gateway also uses a comprehensive set of inbound and outbound configuration settings to determine how messages and connections are handled. Configuration settings include effective inbound connection control, directory harvest attack detection and blocking, appropriate mail relay definitions, and delivery control. Messages that Email Security cannot process due to processing errors can be held in a delayed messages queue for subsequent delivery attempts.
Antivirus and antispam filters
When the hybrid service is not configured as a pre-filter, Email Security Gateway antivirus scanning analyzes all email content and attachments for the presence of viruses and threats. The antivirus filter is a combination of Websense content classification analytics and an Authentium antivirus engine.
The antispam filter is composed of a collection of tools. Digital fingerprinting scans email against a database containing the latest digital fingerprints unique to spam. Email Security Gateway also uses the LexiRules antispam filter to analyze email for the words, phrases, and patterns commonly found in spam. Heuristics scanning can identify possible characteristics of spam in message headers and content.
Email Security Gateway can use Websense Web Security URL scanning for more accurate and efficient spam detection. In order to block email messages that contain URLs or IP addresses relating to, for example, a gambling Web site, Email Security Gateway relies on the Web Security module, which maintains an updated URL database from the Websense download server.
A message that triggers an antivirus or antispam filter is handled based on the action defined for the individual filter. The message may be delivered, dropped, or isolated in a specific quarantine folder based on the filter action configuration. Blocked messages are held in quarantine queues to await administrator or end-user action. Email Security provides default quarantine queues, along with the capability for an administrator to define new queues.
Reporting and logging
The Email Security Gateway log database receives system health and message traffic data, which it uses to generate reports. The Today and History dashboards display this information in system and email status and activity charts, providing a graphical picture of the value of Email Security Gateway to users. Users can select up to 4 summary charts for display on either the Today or History dashboard screen.
The Main > Status > Presentation Reports page enables users to generate various reports of system and email activity from predefined report templates. Some of these reports can be customized to suit specific needs. For example, message data may be sorted by hour, day, week, month, or calendar quarter. Generate a report immediately or schedule it to be automatically generated and delivered at specified intervals. Reports can be generated in PDF, HTML, or Excel formats.
TRITON - Email Security Version 7.6 Release Notes X 5