Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 
Email Security Quick-links: ESA Product Support | SMA Product Support | Email Submission and Tracking Portal | Cisco SecurityHub
Current General Deployment (GD) Releases:
ESA: 11.0.0-264 WSA: 10.5.1-296 SMA: 11.0.0-115 Email Plug-in (Reporting): 1.0.1-048 Email Plug-in (Encryption): 1.0.0-036

New Member

how to prevent smtp attack form inside network

i have a question about that how to limit snmp attack from inside network for prevent our ip addresses to go in blacklist
i did explore how to solve this problem
and i have found few solution

1. SMTP requests are send only permitted host(mail server)s others are drop or deny
2. SMTP requests are send through only one smtp server that locating inside network
thats all

and im finding some solution limit the connection is configured in QoS mechanism but QoS have only limit the BW and shaping.

im thinking about that is a spam. is it? 

and what device can be filter that spam?
or should i use other spam filter server or something?
i want to use cisco BRAS(my mean is ASR) or Cisco 7600 series router

how to prevent that? pls help me

New Member

Hi Khashaaaa,Newer versions

Hi Khashaaaa,

Newer versions of the ESA AsyncOS (8.0.1-023+) have new features to help in this regards.  Message Filters can now be created with the following conditions:

Recipient Count  :   rcpt-count   How many recipients is this email going to?

Address Count  :  addr-count()   What is the cumulative number of recipients?
This filter differs from the rcpt-count filter rule in that it operates on the message body headers instead of the envelope recipients.


These can help identify potential compromised workstations or email accounts that are being used to send out a large volume of messages over a short time.

There is much more information on this in the Email User Guide:



Cisco Content Security - Email Security

New Member

This user guide brings

This user guide brings numerous really goods informations to set up mail securities.