Mail transport protection configuration

Copy current article URL Share via email

This article (PDF) Whole documentation (PDF)

Configure detailed settings for Mail transport advanced settings (SMTP).

For Agent priority setup, we recommend you keep the ESET DKIM Agent priority in last place, at the bottom, to ensure the headers are signed last after any modifications done by previous agents.

If you are running Microsoft Exchange Server 2010, you can choose between Mailbox database protection and Mailbox database scan. Only one protection type can be active at a time.

Mail transport protection rules

Click Edit to open the rules list, and click Add and follow the Rule wizard to create a new rule. Rules enable you to manually define and manage file filtering conditions and actions with filtered files. Rules are applied according to a set of combined conditions, and different conditions and actions are available during the Mailbox database scan.

Scanned message body tagging:

•Do not tag messages—Information will not be added.

•Append tag to infected messages only—Affects only infected messages.

•Append tag to all messages (does not apply to internal messages)—All messages will be marked.

Modify subject of scanned emails

When enabled, you can modify the templates added to the subject of infected messages, spam or phishing messages.

Template added to the subject of infected messages

ESET Mail Security will append a notification tag to the email subject with the value defined in the Template added to the subject of infected messages text field (pre-defined default text is [found threat %VIRUSNAME%]). This modification can be used to automate infected message filtering by filtering emails with a specific subject, for example using Rules or alternatively on the client side (if supported by the email client) to put those email messages in a separate folder.

Template added to the subject of spam messages

ESET Mail Security will append a notification tag to the email subject with the value defined in the Template added to the subject of spam messages text field (pre-defined default text it [SPAM]). This modification can be used to automate spam filtering by filtering emails with a specific subject, for example using Rules or alternatively on a client side (if supported by the email client) to put those email messages into a separate folder.

Template added to the subject of phish messages

ESET Mail Security will append a notification tag to the email subject with the value defined in the Template added to the subject of phish messages text field (pre-defined default text it [PHISH]). This modification can be used to automate spam filtering by filtering emails with a specific subject, for example using Rules or alternatively on a client side (if supported by the email client) to put those email messages into a separate folder.

You can use system variables when editing text that will be added to the subject.

Scan objectives for messages received from authenticated or internal connections

You can choose what scan should be performed on messages from authenticated sources or local servers. Scanning these messages is recommended because it increases protection, and is necessary if you are using the built-in Microsoft SBS POP3 Connector to fetch email messages from external POP3 servers or mail services (for example, Gmail.com, Outlook.com, Yahoo.com, gmx.dem, etc.).

Choose a protection level from the drop-down menu. We recommend that you use Malware and spyware (default setting), especially for internal connections, as it is unlikely that phishing or spam messages will be distributed via your local servers. However, you can increase the protection for Microsoft SBS POP3 Connector by choosing Malware, spyware and phishing or even Malware, spyware, phishing and spam.

This setting turns Antispam protection on/off for authenticated users and internal connections. Emails from non-authenticated connections are always scanned, even when you select Do not scan.

Internal messages from Outlook inside the organization are sent in TNEF (Transport Neutral Encapsulation Format). Antispam does not support TNEF. Therefore, internal TNEF emails will not be scanned for spam regardless of the setting Scan objectives for messages received from authenticated or internal connections.

Scan messages received from authenticated or internal connections by ESET LiveGuard Advanced

When enabled, messages received by ESET LiveGuard Advanced from authenticated or internal connections are also scanned. This setting is only available if you are eligible for ESET LiveGuard Advanced with the appropriate license. The ESET LiveGuard Advanced license is managed by ESET PROTECT and the activation itself must be performed from ESET PROTECT using a policy.

Remove existing SCL header before the scan

This option is enabled by default. You can disable it if you are required to use the Spam Confidence Level (SCL) header.

Write scan results to message headers

When enabled, scan results are written into message headers. These message headers start with X_ESET, making them easy to recognize (for example, X_EsetResult or X_ESET_Antispam).

Default SMTP Reject Response

You can specify a Response code, Status code and Response message that define the SMTP temporary denial response sent to the SMTP server if a message is refused. You can enter a response message in the following format:

Response code	Status code	Response message
250	2.5.0	Requested mail action okay, completed
451	4.5.1	Requested action aborted:local error in processing
550	5.5.0	Requested action not taken:mailbox unavailable
554	5.6.0	Invalid content

You can also use system variables when configuring SMTP Reject Responses.

˄˅