How to gather email samples from specific IP addresses in Symantec Traffic Shaper (STS).

Article:TECH96859  |  Created: 2009-01-19  |  Updated: 2012-01-24  |  Article URL http://www.symantec.com/docs/TECH96859
Article Type
Technical Solution


Issue



You want to review the analysis STS does for messages coming from a specific IP address (path) or CIDR block.


Solution



STS is capable of collecting message samples from IP addresses specified by the administrator for further review. This makes possible to check the result of the analysis made by STS (clean or spam) for each message that has been received from the configured path.

To specify the paths you want to collect email messages from:
1. On the Graphical User Interface (GUI) click on Paths.
2. Click Diagnosis Per IP.
3. Enter a CIDR block or IP address to be watched and click Add.

STS will start storing the messages analyzed from the specified paths. Messages analysed by STS will be later available to be reviewed by clicking on the "View Messages" link.

All the email messages stored from all watched paths can be downloaded from the appliance on a single .zip file by clicking the "Download" button. The .zip file will contain one folder for each watched path and each path will include 2 folders (spam and ham) with the corresponding messages.


References
For more information about this feature check the STS administration guide.

 



Legacy ID



2009101910490254


Article URL http://www.symantec.com/docs/TECH96859


Terms of use for this information are found in Legal Notices