简介
本文档介绍如何将隔离的邮件从ESA上的本地垃圾邮件隔离区移动到SMA上的中央垃圾邮件隔离区。
如何从思科邮件安全设备(ESA)上的本地垃圾邮件隔离迁移到安全管理设备(SMA)上的集中垃圾邮件隔离区?
假设
此过程假设已配置SMA设备,因此已添加ESA设备并启用了集中隔离。
警告:此程序已发布用于指导。请注意,思科TAC不支持此过程,继续此过程意味着可能会丢失隔离区中的部分或全部邮件。
配置汇总
- 在ESA设备上启用集中隔离:GUI >安全服务(Security Services)>垃圾邮件隔离区(Spam Quarantine)>选中启用外部垃圾邮件隔离区(Enable External Spam Quarantine)
- 禁用本地隔离区:GUI > Monitor > Spam Quarantine>取消选中Enable Spam Quarantine
- 提交并确认更改。
- 或者,通过下面的流程将隔离邮件从本地迁移到中央隔离。
步骤
在ESA设备上,您需要清空队列。要清空工作队列,请执行以下操作:
使用CLI命令suspendlistener挂起所有侦听程序,然后选择选项“1.全部”。
> suspendlistener
Choose the listener(s) you wish to suspend.
Separate multiple entries with commas.
1. All
2. Public
3. Test
[*]> 1
等待一段时间,直到传送队列中的大多数可交付邮件已传送。(您可以在命令status和tophosts的输出中看到“活动收件人”的数量。)
>status
...
Gauges: Current
Connections
Current Inbound Conn. 0
Current Outbound Conn. 0
Queue
Active Recipients 1
Messages In Work Queue 0
Kilobytes Used 85
Kilobytes Free 71,303,083
Messages In Quarantine
Policy, Virus and Outbreak 10
Kilobytes In Quarantine
Policy, Virus and Outbreak 50
> tophosts
Sort results by:
1. Active Recipients
2. Connections Out
3. Delivered Recipients
4. Hard Bounced Recipients
5. Soft Bounced Events
[1]>1
Status as of: Mon Sep 29 13:09:53 2014 EDT
Hosts marked with '*' were down as of the last delivery attempt.
Active Conn. Deliv. Soft Hard
# Recipient Host Recip. Out Recip. Bounced Bounced
1 example-d.net 1 0 2 0 0
2 the.cpq.host 0 0 1 0 0
3 the.encryption.queue 0 0 14 0 0
4 the.euq.queue 0 0 2 0 0
5 the.euq.release.queue 0 0 0 0 0
如果1-2小时后传送队列中仍有一些邮件,您需要使用命令bouncerecipients选择选项“3.All”退回这些邮件,并等待队列变空。
> bouncerecipients
Please select how you would like to bounce messages:
1. By recipient host.
2. By Envelope From address.
3. All.
[1]> 3
退回邮件的发件人将收到无法投递邮件的通知)
使用命令suspenddel暂停邮件传送。
> suspenddel
Enter the number of seconds to wait before abruptly closing connections.
[30]>
请通过命令saveconfig或mailconfig备份您的配置,因为它需要清除smtp路由,然后稍后将其添加回来:
> saveconfig
Do you want to mask the password? Files with masked passwords cannot be loaded using
loadconfig command. [Y]>
通过GUI Go to Network -> SMTP Routes并删除所有smtp路由。(请记下旧路由,因为稍后需要再次添加)。 或者,通过CLI使用print显示,然后clear删除。
> smtproutes
There are currently 4 routes configured.
Choose the operation you want to perform:
- NEW - Create a new route.
- EDIT - Edit destinations of an existing route.
- DELETE - Remove a route.
- PRINT - Display all routes.
- IMPORT - Import new routes from a file.
- EXPORT - Export all routes to a file.
- CLEAR - Remove all routes.
[]> print
..
[]> clear
编辑“所有其他域” smtp路由,并将其设置为SMA设备的IP地址,并将端口设置为6025。
>smtproutes
[]> edit
Enter the hostname you want to edit.
[]> ALL
Choose the operation you want to perform:
- ADD - Add new destination hosts.
- REPLACE - Specify a new destination or set of destinations
[]> REPLACE
Enter the destination hosts, separated by commas, which you want mail for ALL to be
delivered.
Enter USEDNS by itself to use normal DNS resolution for this route.
Enter /dev/null by itself if you wish to discard the mail.
Enclose in square brackets to force resolution via address (A)
records, ignoring any MX records.
[]> mysma.com:6025
Default route updated.
验证: 提交更改并从本地隔离区放行2-3垃圾邮件作为测试。
> commit
Please enter some comments describing your changes:
[]> changed default smtp route to point to SMA
如果放行的邮件正确到达集中垃圾邮件隔离区,则放行其余邮件。
将所有邮件传输到SMA设备后,在ESA设备上恢复旧SMTP路由路由。
禁用本地垃圾邮件隔离区,改为启用集中隔离区。
使用命令在ESA上恢复正常操作 继续。
> resume
Mail delivery resumed.
反馈