CSA installed and in test mode collecting events. Working through rules, and policies. (If anyone has a down and dirty way to do that, I would greatly appreciate it, CSA is a huge can of worms)
So, under Security agent, event, alert. I set it up to send an email for ALL ALERTS. Simply to see if it works. I enter a valid internal company email, as the Recipient, and a valid company internel email as the sender. For the address of mail server I have Servername.network.net. Put in a 'subject' line.
Then after a few minutes I get an event, and this shows up.
410 6/20/2007 3:11:13 PM - Warning The notification process failed to send 1 alert(s) using mail alert 'Network and Security Team Notify'.
123 similar events (same Type/Rule ID/Application)Find Similar
Tried changing the sender / the recipient, the server to the ip address. Still the same message. What am I doing wrong. Doesnt look that difficult.