Overview
You define your content security policy from the Policy menu. The content security policy determines the email content that is allowed to flow in and out of your organization, and it comprises a number of combined components. You create this policy by adding content rules and other policy references to Mail Policy Routes. Each mail policy route references two Email Address Lists, which is a type of policy references. One list supplies the sender addresses, the other supplies the recipient addresses.
When an email passes through Secure Email Gateway, it is checked against content rules that have been configured for the route the email is taking. When any of such content rules are triggered, a number of actions can be performed. For example, inappropriate or malicious content, such as sensitive information, hidden macros, scripts and document properties are removed, or modified by applying adaptive redaction and sanitization.
There are also features such as SpamLogic to assist spam handling, and Missing Manager to enforce manager involvement in outbound messages.
|
When you peer Secure Email Gateway with other types of Gateways, you will see features in one that are only supported in the other. For more information, see Peer Gateways. |
Content security policy FAQ
-
Why do I
need to apply my policy?
Secure Email Gateway does not act on changes to its policy or settings, until an administrator applies the configuration. Having to apply the configuration means that there is control in the change process. It also ensures that changes to the configuration are audited.
-
How should I prioritize my content rules?
Content rules are applied in the numbered order displayed on the policy route. You should typically use more specific content rules later in the list.
-
How does Secure Email Gateway determine the policy to invoke on a particular message?
Secure Email Gateway invokes the content rules applied to the first policy route in the Manage Policy Routes page whose mail route matches the message's From and To addresses.
-
When is a content rule invoked on a message?
The content rule is invoked if it has been applied on the policy route to which Secure Email Gateway matches the message. (See the previous answer.)
-
When does a content rule trigger, and what effect does this have?
A content rule triggers if the
If one or more content rules are triggered, Secure Email Gateway performs the rules' What To Do? actions on the
The priority of the content rules is determined by the order in which they are listed in the policy route. -
The
-
If the message is held in a message area, you can release the message if you know that it is safe to do so. When a message is released, the
-
The
With some additional actions, such as Generate An Inform, you can specify that Secure Email Gateway should perform the additional action only if the rule's
-
-
How can a single message have two disposal actions applied to?
If you use two disposal actions with a content rule, the rule makes a copy of detected messages. One copy is dealt with by one of the disposal actions, and the other copy is dealt with by the other disposal action.
-
Why does a policy route need a default
Secure Email Gateway uses the default disposal action for messages on a route that do not trigger any of the content rules.
-
What is the difference between What To Do? action,
What To Do? consists of Disposal Action and What Else To Do? action. Disposal Action specifies how the message is disposed of. For example, whether it is dropped, held in a message area, or delivered. What Else To Do? action is a subsequent step after the Disposal Action has been applied. For example, you might Generate An Inform, or Annotate the Message.