Overview
Fact Sheet
How To
FAQs
Download
Feature Matrix

Intelligent Message Filter (IMF) Whitelist / Safe Sender
Exchange Server email content control (internal, outgoing, incoming)
Exchange Server email content control (outgoing, inbound)
Exchange Server email content control (internal, outbound, inbound)

IMF Management:
IMF Management

Smart Action Triggers™

Eliminate Spam:

Address Management:

Exchange Server Support

Support is provided for:
 Exchange 2010
Exchange 2007
Exchange 2003

Cluster environments support:
Active/Passive
Active/Active/Active

All service packs for Exchange Server are supported.

SecurExchange - > How To

White List mail items through the Exchange IMF?

The Exchange Intelligent Message Filter (IMF) is quite effective at detecting spam, however is quite limited when it comes to dealing with messages that are triggered incorrectly yielding a "False Positives".  To address this issue, Nemx SecurExchange - IMF Extensions can prevent a message based on a number of different attributes from being scanned by the IMF and therefore "whitelist" that message.

White listing a message can be performed in a number of different ways, depending on your overall organization and users needs.  Whitelisting can be defined globally for certain message attributes, like the sender's domain, or by specific content and header information for groups of users or departments.

Whitelisting the Exchange IMF by Sender or Domain:

The Friendly Domains component of Nemx SecurExchange can be used to define which domains are "friendly" to your organization and subsequently will be allowed to bypass various scanning components like the IMF.  Friendly Domains can automatically detect based on previous mail traffic, whether a sender's domain is a true business partner and considered friendly.  In addition, individual domains may be manually added to the friendly list.

Define the traffic patterns for Automatic mode

  1. On the Friendly Domains tab, click the Advanced button
  2. In the Exclude Filter section, select any specific SecurExchange filtering components.  The IMF by default will be bypassed
  3. Define the thresholds for message traffic, based on daily, weekly, and consecutive weeks of traffic
  4. Click Ok

Manually add domains to the Friendly Domain list

  1. On the Friendly Domains tab, click the Add button
  2. In the Domain field, enter the domain you wish to whitelist
  3. In the Type field, select "Always Friendly"
  4. Click Ok

Whitelisting the Exchange IMF by Message Header Attributes (Corporate, Perimeter, SBS Edition):

The Intelligent Message Filter may also be bypassed based on particular attributes of a message.  For instance, you may want to whitelist based on particular subject, content or concepts found within the message, or by aspects of the internet message header like the received line, mailing list header entries, the originator's name (not email address), or custom header entries (i.e. X-SPAM).  In addition, any white list rule may be assigned to a particular group of users or excluded from a group of users.

Define the White List Action:

  1. On the Actions configuration tab, select Spam and Content Actions
  2. Click Add
  3. In the Name Field, enter a name for this Action, say "WhiteList IMF"
  4. In the Message Modifications area, enable the "SCL Increment" action, and enter "-1" into the SCL field
  5. Hit Ok

Create the White List Rule based on Content

  1. On the Content Filtering configuration tab, hit Message Text Rules button
  2. Hit the Add button
  3. Select the Active checkbox
  4. Enter the particular content rule
  5. In the Actions drop down list, select the Action previously created, "WhiteList IMF"
  6. In the Transfer Mode area, select Inbound
  7. In the Behavior area, select Halt
  8. Include any include/exclude restriction if required
  9. Hit Ok

Create the White List Rule based on a Message Header Attribute

  1. On the Spam Manager configuration tab, hit Header Filtering Headers button
  2. Hit the Add button
  3. Select the Active checkbox
  4. Enter the particular header token rule.  For instance to look for a particular mailing list reply field, enter the token as "return-path" and the header item as cnn.com
  5. In the Actions drop down list, select the Action previously created, "WhiteList IMF"
  6. In the Transfer Mode area, select Inbound
  7. In the Behavior area, select Halt
  8. Include any include/exclude restriction if required
  9. Hit Ok

This How To applies to the following SecurExchange family of products:

 

Corporate

Perimeter

SBS

Anti-Spam

IMF

AutoContent

White listing

Automatic Traffic based

 

Domain / email / Country

 

Header / Content

 

 

Granular by AD Group

 

 

Smart Action Triggers (Partial List)

Spam Confidence Level (SCL) Management

 

 


Need to add virus protection to your solution?
Check out SecurExchange Anti-Virus

More About This Product: Fact Sheet | FAQS | Download | Feature Matrix

Still not sure which solution is right for you? Find out more about our SecurExchange family of products, compare products through a feature matrix, or view some of our most Frequently Asked Questions, or email info@nemx.com

 

Internal corporate email outnumbers all other messages 8:1

Appliances and managed services monitor only 15% of total corporate email traffic


Straight "plug & play" add-in to Microsoft Exchange Server 2010, 2007, 2003 or Small Business Server 2003

White List Exchange's Intelligent Message Filter (IMF) by Domain, sub Domain, country Domain, or individual address

Provide multiple actions depending on the IMF's Spam Confidence Level (SCL) threshold

Provide global Safe Sender lists for Exchange's Intelligent Message Filter (IMF)

Move Exchange IMF triggered messages to any number of user subfolders

Define SCL thresholds and IMF whitelist rules globally or by Exchange store or user group


Copyright 1996-2007, Nemx Software Corporation, All Rights Reserved. All trademarks used or referred to on this site are the
property of their respective owners. No materials on this site may be reproduced, altered, or further distributed without Nemx's prior written permission.