"Antispam" system configuration
action
This command is used to specify the action to be applied to the email on which the rule was triggered.
The use of a negative form (no) of the command removes an assigned action.
Syntax
action <ACTION>
[no] action
Parameters
<ACTION> – assigned action:
- reject – further delivery of the letter is prohibited, the sender of the letter is sent a reply about the error.
Default value
None
Required privilege level
15
Command mode
CONFIG-ANTISPAM-PROFILE-RULE
Example
esr(config-antispam-profile-rule)# action reject
description
This command is used to change the description of the customized "Antispam" service profile or the rule within the "Antispam" service profile.
The use of a negative form (no) of the command removes a specified description.
Syntax
description <DESCRIPTION>
no description
Parameters
<DESCRIPTION> – description of the configured "Antispam" service profile or rules within the "Antispam" service profile, specified by a string of up to 255 characters.
Default value
None
Required privilege level
15
Command mode
CONFIG-ANTISPAM-PROFILE
CONFIG-ANTISPAM-PROFILE-RULE
Example
esr(config-antispam-profile)# description "Test Antispam Profile 1"
description
This command is used to change the description of the configured mail domain.
The use of a negative form (no) of the command removes a specified description.
Syntax
description <DESCRIPTION>
no description
Parameters
< DESCRIPTION > – description of the configured mail domain, specified by a string of up to 255 characters.
Default value
None
Required privilege level
10
Command mode
CONFIG-MAILSERVER-DOMAIN
Example
esr(config-mailserver-domain)# description "Test Mail Domain"
domain
This command is used to specify a mail domain.
The use of a negative form (no) of the command removes the specified mail domain.
Syntax
domain <DOMAIN-NAME>
no domain
Parameters
<DOMAIN-NAME> – name of the email domain, a string of up to 31 characters.
Default value
None
Required privilege level
10
Command mode
CONFIG-MAILSERVER
Example
esr(config-mailserver)# domain test_domain
enable
This command is used to activate a rule in the "Antispam" service profile.
The use of a negative form (no) of the command enables a rule.
Syntax
[no] enable
Parameters
None.
Default value
Disabled.
Required privilege level
15
Command mode
CONFIG-ANTISPAM-PROFILE-RULE
Example
esr(config-antispam-profile)# enable
enable
This command is used to activate the mail server on the basis of which the "Antispam" service operates or the mail domain.
The use of a negative form (no) of the command deactivates mail server or main domain.
Syntax
[no] enable
Parameters
None.
Default value
Disabled.
Required privilege level
10
Command mode
CONFIG-MAILSERVER
CONFIG-MAILSERVER-DOMAIN
Example
esr(config-mailserver-domain)# enable
headers max-size
This command is used to specify the maximum size of an email header. If the size of the header of the message to be processed exceeds the specified value, the unnecessary entries in the header will be discarded and will not be taken into account when processing the message.
The use of a negative form (no) of the command sets the default maximum email header size.
Syntax
headers max-size <SIZE>
no headers max-size
Parameters
<SIZE> – maximum size of the email header in KB, takes values in the range [50...200].
Default value
100.
Required privilege level
10
Command mode
CONFIG-MAILSERVER
Example
esr(config-mailserver)# headers max-size 115
mail domain
This command is used to specify the name of the email domain for which the "Antispam" service will receive, analyze and deliver mail according to the settings of the email domain. Emails that do not come from or for the domain you specify will be discarded.
The use of a negative form (no) of the command removes a specified mail domain name.
Syntax
mail domain <NAME>
[no] mail domain
Parameters
<NAME> – name of the email domain, a string of up to 63 characters.
Default value
None
Required privilege level
10
Command mode
CONFIG-MAILSERVER-DOMAIN
Example
esr(config-mailserver-domain)# mail domain eltex-co.ru
mail max-size
This command is used to specify the maximum size of an email. If the size of the message to be processed exceeds the specified value, the message will be discarded and the sender of the message will get a corresponding notification.
The use of a negative form (no) of the command sets the default maximum email size.
Syntax
mail max-size <SIZE>
no mail max-size
Parameters
<SIZE> – maximum size of an email in KB. Takes values in the range of [5120..51200].
Default value
15360.
Required privilege level
10
Command mode
CONFIG-MAILSERVER
Example
esr(config-mailserver)# mail max-size 10000
mail server ip
This command is used to specify the IP address of the mail server, for which the "Antispam" service will redirect email according to the settings of the mail domain. Emails coming from a domain specified in the "mail domain" command but not from the specified IP address will be rejected.
The use of a negative form (no) of the command removes a specified mail server IP address.
Syntax
mail server ip <ADDR>
[no] mail server ip
Parameters
<ADDR> – mail server IP address, defined as AAA.BBB.CCC.DDD where each part takes values of [0..255].
Default value
None
Required privilege level
10
Command mode
CONFIG-MAILSERVER-DOMAIN
Example
esr(config-mailserver-domain)# mail server ip 192.168.1.1
mailserver
This command is used to switch to the configuration mode of the mail server, on the basis of which the "Antispam" service operates.
The use of a negative form (no) of the command removes the mail server from the configuration.
Syntax
[no] mailserver
Parameters
None.
Default value
None
Required privilege level
10
Command mode
CONFIG
Example
esr(config)# mailserver
mailserver domain
This command is used to create a mail domain, which is used when the mail server is running.
The use of a negative form (no) of the command removes the specified mail domain.
Syntax
[no] mailserver domain <DOMAIN-NAME>
Parameters
<DOMAIN-NAME> – name of the email domain, a string of up to 31 characters.
Default value
None
Required privilege level
10
Command mode
CONFIG-MAILSERVER
Example
esr(config)# mailserver domain local_domain
mark-type
This command is used to specify the marking type for emails that the "Antispam" service has classified as "Spam".
The use of a negative form (no) of the command removes the marking type for emails that the "Antispam" service classified as "Spam".
Syntax
mark-type <MARK-TYPE>
no mark-type
Parameters
<MARK-TYPE> – the marking type of an email categorized as "Spam". Takes the following values:
- header – add the X-Spam header to email headers;
- subject – add the [SPAM] tag before the subject of the email.
Default value
None
Required privilege level
15
Command mode
CONFIG-ANTISPAM-PROFILE
Example
esr(config-antispam-profile)# mark-type header
profile antispam
This command is used to specify the "Antispam" service profile to use in the email domain configuration.
The use of a negative form (no) of the command removes a specified profile from the email domain configuration.
Syntax
profile antispam <ANTISPAM-PROFILE-NAME>
[no] profile antispam
Parameters
<ANTISPAM-PROFILE-NAME> – name of the "Antispam" service profile, specified as a string of up to 31 characters.
Default value
None
Required privilege level
15
Command mode
CONFIG-MAILSERVER-DOMAIN
Example
esr(config-mailserver-domain)# profile antispam main_domain_protection
rule
This command is used to create a rule in the "Antispam" service profile and switch to its configuration mode. The rules are proceeded by the device in number ascending order.
The use of a negative form (no) of the command removes a specified rule.
Syntax
[no] rule <ORDER>
Parameters
<ORDER> – rule number, may take values [1..100].
Default value
Rule is not created.
Required privilege level
15
Command mode
CONFIG-ANTISPAM-PROFILE
Example
esr(config-antispam-profile)# rule 10
security antispam profile
This command is used to create an "Antispam" service profile and switch to its configuration mode.
The use of a negative form (no) of the command removes a specified "Antispam" service profile.
Syntax
[no] security antispam profile <NAME>
Parameters
<NAME> – name of the Antispam service profile, specified as a string of up to 31 characters.
Default value
None
Required privilege level
15
Command mode
CONFIG
Example
esr(config)# security antispam profile TEST
sender email
This command is used to specify a group of domains or mailboxes from which mails are sent, for which the rule should trigger.
The use of a negative form (no) of the command cancels the assignment.
Syntax
sender email <OBJ-GROUP-MAIL-NAME>
[no] sender email
Parameters
<OBJ-GROUP-MAIL-NAME> – name of a group of domains or mailboxes, specified as a string of up to 31 characters.
Default value
None
Required privilege level
15
Command mode
CONFIG-ANTISPAM-PROFILE-RULE
Example
esr(config-antispam-profile-rule)# sender email mail_blacklist
sender ip
This command is used to specify the group of IP addresses of mail servers or clients for which the rule should trigger.
The use of a negative form (no) of the command cancels the assignment.
Syntax
sender ip <OBJ-GROUP-NETWORK-NAME>
[no] sender ip
Parameters
<OBJ-GROUP-NETWORK-NAME> – IP addresses profile name, set by the string of up to 31 characters.
Default value
None
Required privilege level
15
Command mode
CONFIG-ANTISPAM-PROFILE-RULE
Example
esr(config-antispam-profile-rule)# sender ip ip_blacklist
smtp helo-required
This command is used to enable the mandatory HELO/EHLO SMTP command from an SMTP client that tries to connect to ESR via SMTP. None of the HELO/EHLO commands during the establishment of an SMTP session will result in the connection being dropped.
The use of a negative form (no) of the command disables the mandatory requirement of the HELO/EHLO command.
Syntax
[no] smtp helo-required
Parameters
None.
Default value
The HELO/EHLO command is not required during an SMTP session establishment.
Required privilege level
10
Command mode
CONFIG-MAILSERVER
Example
esr(config-mailserver)# smtp helo-required
smtp vrfy-enable
This command is used to enable the VRFY SMTP command, which allows you to check if a user with this name is on the list of users served by this mail server. This command is disabled by default in order to protect against scanning the user base on the mail server.
The use of a negative form (no) of the command disables the possibility to use the VRFY SMTP command.
Syntax
[no] smtp vrfy-enable
Parameters
None.
Default value
The VRFY command is disabled.
Required privilege level
10
Command mode
CONFIG-MAILSERVER
Example
esr(config-mailserver)# smtp vrfy-enable
tls enable
This command is used to enable the TLS protocol to support secure connections to other mail servers and mail clients. If TLS is enabled on ESR and the other party does not report TLS support, the whole SMTP session will be in plaintext (i.e. open).
The use of a negative form (no) of the command disables TLS protocol support.
Syntax
[no] tls enable
Parameters
None.
Default value
TLS support is disabled.
Required privilege level
10
Command mode
CONFIG-MAILSERVER
Example
esr(config-mailserver)# tls enable
tls keyfile
This command is used to specify certificates and keys for TLS during SMTP sessions establishment.
The use of a negative form (no) of the command removes a specified certificate or key type.
Syntax
tls keyfile <TYPE> <NAME>
[no] tls keyfile
Parameters
<TYPE> – type of certificate or key file, takes values:
- ca – certificate authority;
- server-key – private server key;
- server-crt – public server certificate;
- dh – Diffie-Hellman key.
<NAME> – certificate file name, set by the string of up to 31 characters.
Default value
None
Required privilege level
10
Command mode
CONFIG-MAILSERVER
Example
esr(config-mailserver)# tls keyfile server-crt server.crt