Messaging Gateway

 View Only

  • 1.  Email ID blocking

    Posted Jan 31, 2012 10:27 PM

    Hi,

    We are receving a set of spam mails from one particluar sender with differenet numbers..if we blocked one ID in reputation - bad sender, next day the mail is coming with another number? for ex: xxx1@abc.com if we blocked next day we are getting mail from xxx2@abc.com..like wise we are getting..how to block these type of IDs?

    How to block that sender irrespective of those numbers attacched to the IDs? Kindly help..

    iam using Brightmail gateway 9.5



  • 2.  RE: Email ID blocking

    Broadcom Employee
    Posted Feb 01, 2012 01:25 AM

    is the domain required by your oragnization? if not, block the domain.



  • 3.  RE: Email ID blocking

    Posted Feb 01, 2012 03:12 AM

    Hi,

    The domain is gmail.com..how we can block?



  • 4.  RE: Email ID blocking

    Broadcom Employee
    Posted Feb 01, 2012 04:51 AM

    what SPAM policy has been activated for incoming messages?



  • 5.  RE: Email ID blocking

    Posted Feb 01, 2012 10:05 AM

    You could create content filtering policies to block these patterns but I don't recommend it as spammer patterns change quickly.

    Instead I would recommend ensuring the product has no rule updates issues (check logs for errors) and that you are following all the best practices in relation to spam control listed here: http://www.symantec.com/business/support/index?page=content&id=TECH90043

    In particular to ensure Symantec has visibility into local missed spam variants I'd recommend

    1) enabling Probe Participation - to convert invalid email addresses in your organisation into probe accounts.

    2) forward any missed spam as an attachment to the appropriate address for your region - see here www.symantec.com/business/support/index?page=content&id=TECH83081

    Any spam sent to these accounts will be eligible for potential filter creation by our analysts.