Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 6 replies
  • Answers 1 answer
  • Subscribers 41 subscribers
  • Views 3914 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

XGS - Show reason why mail is quarantined

marcus33241

We get notify mails from our customer XGS 116 with SFOS 20 that mails are quarantined due to a detected virus (Malware 'Troj/MSIL-SSP,CXmail/MalPE-BP' detected and blocked)
When looking at the device, I can't see any hint at the dashboard that a mail with malware was blocked. Looking at the quarantine I can see the mails, but no reason why they are quarantined. Even the log doesn't show why the mail wasn't delivered. The hint is "Mail has been quarantined by policy <domain>.

Do I miss something?

Regards



This thread was automatically locked due to age.
Parents
  • 0

    Thank's for the hint but that's not what I asked for. I found the mails, but no description why it was quarantined.

    Here is an exsample:

    this is the notification mail, warning that mailware was received

    This is the quarantine list showing the mail without any reason.

    This is the mail log showing that the mail was quarantined. Reason: "by policy ...com"

    and this is the log-viewer showing the mail was accepted by the device and queued for scanning. (btw. why are there two logs for e-mails?)

    So I didn't find anything on the XGS where I can estimate why this mail was quarantined.

  • 0 in reply to marcus33241

    As I said, the only way is to toggle the checkboxes and filter again.

Reply Children
Unfiltered HTML