Messaging Gateway

 View Only

  • 1.  Monitoring Realtime Email Activity & Content Filtering Policies

    Posted Oct 31, 2010 05:28 AM

    HI ,I am evalauting brightmail email gateway 9.0.2 and I want to monitor real time email activity .How can I do that using a Command Line Tool.Also I am creating a Policy to block outbound emails containing a specific word but it is not working .how can I troubleshoot that as well.



  • 2.  RE: Monitoring Realtime Email Activity & Content Filtering Policies

    Posted Oct 31, 2010 10:21 AM

    Command line mta monitoring is best achieved with either the "monitor mta" command or remotely via SNMP. from the CLI type "help monitor" and page down to the mta section for more info on the counters available.

     

    Regarding your content filtering policy: If you turn up the logging level for the Brightmail Engine to "info" or "debug", and  then the command line tools to "tail -f" the bmserver log file, you should get a detailed picture of the evaulation thatas occuring with regards that policy.



  • 3.  RE: Monitoring Realtime Email Activity & Content Filtering Policies

    Posted Oct 31, 2010 11:53 PM

    Hi ,thanks for you reply .I will be needing your support on some other queries as well .

    1. Regarding the content filtering ,I have figured out the problem.It seems that content dictionaries can only have words/phrases and not numerics .I wanted to check email body/subject and attachment  for some specific numbers such as 345678 and 456789 using a custom dictionary  but it didn't work which made me think that my content policy is not working.I put some words such as sex and viagra in the same dictionary and the emails were blocked .does it mean that in order to detect numbers ,i have to use patterns and not dictionaries .?
    2. while looking at the quarantine incidents ,it doesn't mention about the detected words which causes  the message to qurantine .I have used ironmail and ironmail mentions you about the detected words so it is easy for you to verify .Is there way to find this information via gui .

    Really appreciate your input .Also let me know if I am not clear in my question .



  • 4.  RE: Monitoring Realtime Email Activity & Content Filtering Policies

    Posted Nov 01, 2010 02:21 AM

    Hi ,Just to clarify .I am not Interested in monitoring counters .I mainly want to see SMTP Activity log which shows incoming connection ,email transmission details etc. I can see all of that in Ironmail Events Log but I am not able to find a similar log in Brightmail.



  • 5.  RE: Monitoring Realtime Email Activity & Content Filtering Policies
    Best Answer

    Posted Nov 01, 2010 10:27 AM

    Try this: Admin, logs,  set the MTA at Information.   The log will be in /data/logs/maillog

     



  • 6.  RE: Monitoring Realtime Email Activity & Content Filtering Policies

    Posted Nov 02, 2010 02:29 AM

    @Cricket17, Thanks .It worked .