At the Admin-level, review and enable/address the following:
- For your domain(s) and DNS administration, review your MX records and assure they locked down and ONLY delivering through the Gateway/Cloud Gateway assigned IP address(es)
- If you have multiple domains, be sure that you are scrubbing your entire list of domains to assure they are pointed towards your gateway.
- You can review Mail Policies > Recipient Access Table (RAT) and Network > SMTP Routes for your defined SMTP Routes List and associated receiving domains.
> dig simplifymyconfig.com MX ; <<>> DiG 9.16.15-Debian <<>> simplifymyconfig.com MX ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 42051 ;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 0, ADDITIONAL: 1 ;; OPT PSEUDOSECTION: ; EDNS: version: 0, flags:; udp: 4096 ;; QUESTION SECTION: ;simplifymyconfig.com.com. IN MX ;; ANSWER SECTION: simplifymyconfig.com.com. 1800 IN MX 15 esa1.hc1234-47.iphmx.com. simplifymyconfig.com.com. 1800 IN MX 15 esa2.hc1234-47.iphmx.com. ;; Query time: 19 msec ;; SERVER: 18.104.22.168#53(22.214.171.124) ;; WHEN: Mon Jul 12 17:31:11 EDT 2021 ;; MSG SIZE rcvd: 99
The example above shows that 'simplymyconfig.com' has DNS MX records pointing to Cisco Secure Email Cloud Gateways. Your MX records may vary, but you should ensure that you have your MX pointing to your known and administrated mail gateway.
At this time, we have completed the following:
- Validate Detection Services
- Review of Bypass, Accept, or Allow Lists
- Aggressive Profile for Anti-Spam
- Review and Validate MX Records
- Submissions to Talos
- Support Cases
- Security Review (Optional)
Once your MX records are in check, proceed on to the next section of this document.
Updated 3 months ago