I. Steps on how to enable IronPort Email Encryption on IronPort Appliance: From GUI: Under Security Services, Select IronPort Email Encryption, Enable IronPort Email Encryption by clicking on Edit Settings button. Create a new Encryption Profile by clicking on Add Encryption Profile button. For Key Service Type: Choose Cisco Registered Envelope Service or IronPort Encryption Appliance (if IronPort Encryption Appliance is purchased) Click on Submit and Commit Changes. After the IronPort Encryption Profile has been created, you will be given the option to Provision it to the CRES server. You should see a Provision button next to the new profile. Click on the Provision button.
II. Creating an outgoing content filter to implement the Encryption Profile: From GUI: Under Mail Policies, Select Outgoing Content Filters, Click on Add Filter button. Add a new filter with condition as subject == "Secure:" and Action as Encrypt and Deliver. Click on Submit button. Under Mail Policies, Select Outgoing Mail Policies, and enable this new filter in the default mail policy or appropriate mail policies. Commit changes.
III. How to test if Encryption is working To test, generate a new mail with Secure: in the subject and send the email to a web account (i.e. Hotmail, Yahoo, Gmail) and see if it gets encrypted. Check the mail logs as described below to ensure that the message is getting encrypted via the Outgoing Content Filter.
IV. Validating Encryption filter processing in the mail_logs The following mail_log entries show that the messages matched the encryption filter called Encrypt_Message.
Wed Oct 22 17:06:46 2008 Info: MID 116 was generated based on MID 115 by encrypt filter 'Encrypt_Message' Wed Oct 22 17:07:22 2008 Info: MID 118 was generated based on MID 117 by encrypt filter 'Encrypt_Message' Wed Oct 22 17:31:21 2008 Info: MID 120 was generated based on MID 119 by encrypt filter 'Encrypt_Message'
I hope this helps!
(*If you have received the answer to your original question, and found this helpful/correct - please mark the question as answered, and be sure to leave a rating to reflect!)
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...