File Share Encryption

 View Only

  • 1.  SEMS Mail Policy

    Posted Aug 13, 2014 07:26 PM

    Hi Guys,

    Based on mail-policy-poster.pdf downloadable from https://YourSEMS.YourDomain.com:9000/omc/help/Extras/mail-policy-poster.pdf
     

    The environment is a SEMS with some PGP Desktop Email to encrypt source and users encrypted at the gateway.


    Please someone help me understand how in the mail flow, policies can identify each of the conditions.


    Examples:

    - "Service type is SMTP / POP / IMAP Inbound / Outbound" - It is clear that the protocol identifies the protocol but where and how it determines the direction ..?

    - "Service type is Microsoft Oulook (MAPI) / Lotus Notes" - How to identify if Lotus or Microsoft ..?

    - "Service type is PGP Universal Web Messenger" - Where in the message identifies this; if the message is sent from a Notes email client / Outlook ..?

    - "Aplication is internal / external PGP Desktop" - There is an ID that is add the email you understand what "true" ..?

     
    I have spent hours and I could not understand this.

    Thanks.

     



  • 2.  RE: SEMS Mail Policy

    Posted Aug 14, 2014 09:27 AM

    So it can understand the application type based on the headers within the email as I understand it.

    As for Web Messenger, something previous in the policy would need to define that the email is due to be sent via Web Messenger.

    You are right, I've also scratched my head about how it identified what service an email is from/to.  There's no documentation stating how its identified as such.

    In the admin guide, there are only 3 mentions of "Service type" which all give no indication of how its determined.



  • 3.  RE: SEMS Mail Policy

    Posted Aug 22, 2014 06:03 AM

    Hi rojopipe,

    Let me try to answer your first question:

     "Service type is SMTP / POP / IMAP Inbound / Outbound" - It is clear that the protocol identifies the protocol but where and how it determines the direction ..?

    - The direction of the email is determined by the proxy settings on the Symantec Encryption Management Server (SEMS). For example: If you have a mail proxies in a Gateway Placement i.e., the SEMS is placed between your network's outward-facing mail server and the Internet. In a gateway placement, you have a single Unified SMTP proxy that proxies both inbound and outbound mail traffic between your mailserver and the Internet. You see two sections there under Unified SMTP Proxy Type: Outbound Mail and Inbound Mail.

    Outbound Mail section

    - You add the IP addresses in the designated Source IPs. When SEMS receives a connection from an IP address on this designated source IPs list, it knows that the email is outbound. In other words, the SEMS would know that the email needs to be send out to the Internet.

    Inbound Mail section

    -  You add the connection details (IP or hostname) of your outward-facing mail server. When SEMS receives a connection from an IP address that does not appear in the Designated Source IPs list, it knows that the mail is Inbound mail that has arrived from the Internet.

    Once SEMS decides whether the connection is outbound or inbound based on the proxy settings, the mail will be handed over to the mail policy to be further processed. It will be processed based on whether it is Outbound or Inbound.

    For further information, you may want to check our documentation. Here are some links:

    http://www.symantec.com/docs/DOC7069

    http://www.symantec.com/docs/HOWTO59417

    If you are trying to deploy the Symantec Encryption Management Server and are running into issues with mailflow, please let us know.

    Hope it helps.

    Best Regards,

    bipshr