Jump to content

filips

ESET Staff
  • Posts

    160
  • Joined

  • Last visited

  • Days Won

    3

Posts posted by filips

  1. Hi ajal,

    To make your custom ports work with quaratnine web interface open IIS and add a binding to this port to Default web site.

    Messages stuck in the Shadow redundancy queue is a known issue. We were able to reproduce this problem even without our product installed (using MS Exchange transport rules).

    Quarantined messages are discarded from the queue after specified period (ShadowMessageAutoDiscardInterval - default is 2 days).

  2. To see the reason why antispam catches your emails check Mail server protection log (in GUI go to Log Files and choose "Mail server protection").

    The problem you describe sounds like antispam using client's IP address - did you enable "Advanced settings/Mail transport protection/Advanced settings/Search for sender's originating IP address in headers"?

    You can check Mail server protection log to see why the messages from Office365 are moved to quarantine

  3. You can use this command to disable interactive paging:

    eShell ui eshell>set lister disabled

    Or you can just redirect the output to null (eShell server as greylisting add domain-to-ip-whitelist test.com > $null)


    One more thing - there is a new import/export function coming in EMSX 6.4 (end of this month), so if you wait a while you can use this:

    eShell server as greylisting import domain-to-ip-whitelist \\192.168.9.11\test\Greylist.txt

  4. You need to disable cleaning in scanner settings:
    Server/Antivirus and antispyware/Mail transport protection/Threatsense Parameters/Cleaning level to "No cleaning"

    and to redirect infected messages to quarantine set:
    Server/Mail transport protection/Action to take if cleaning not possible to "Quarantine message"

    NOTE: you may need to enable cleaning when releasing such email - otherwise it would return to quarantine (or create a rule to skip AV scan for such emails)

  5. Sorry, wrong context :/

    This is antispam whitelist:
    eShell server as filtering>add approved-domain-to-ip-list domain.com

    This is greylisting whitelist (antispam scan is still performed):
    eShell server as greylisting>add domain-to-ip-whitelist domain.com

    Greylisting uses also antispam lists if "Use antispam lists to automatically bypass Greylisting" enabled

×
×
  • Create New...