- Kaspersky Secure Mail Gateway
- The Kaspersky Secure Mail Gateway interface
- Application licensing
- About the End User License Agreement
- About the license certificate
- About the key
- About the key file
- About the activation code
- About the subscription
- About data provision
- Modes of Kaspersky Secure Mail Gateway operation under license
- Adding an activation code
- Adding a key file
- Removing a key
- Monitoring license key status
- Configuring warnings about upcoming license key expiration
- Purchasing a license
- Renewing a license
- Updating Kaspersky Secure Mail Gateway
- Application installation and setup
- Deploying a virtual machine in the management console of the VMware ESXi hypervisor
- Deploying a virtual machine in the web interface of VMware vSphere
- Deploying a virtual machine in the management console of the Microsoft Hyper-V Manager hypervisor
- Deploying a virtual machine using Microsoft SCVMM
- Application installation and setup
- Removing the application
- Preparing for removing the application
- Deleting a virtual machine in the management console of the VMware ESXi hypervisor
- Deleting a virtual machine in the web interface of VMware vSphere
- Deleting a virtual machine in the management console of the Microsoft Hyper-V hypervisor
- Deleting a virtual machine using Microsoft SCVMM
- Getting started with the application
- Integrating Kaspersky Secure Mail Gateway into the existing corporate email infrastructure
- Monitoring of application operation
- Using message processing rules
- Viewing the rule table
- Configuring rule table display
- Message processing rule configuration scenario
- Creating message processing rules
- Configuring Anti-Virus protection
- Configuring link scanning
- Configuring Anti-Spam protection
- Configuring Anti-Phishing protection
- Configuring Content Filtering
- Mail Sender Authentication
- Notification settings for message scan events
- Adding a Warning about insecure message
- Adding email disclaimers
- Configuring KATA protection
- Examples of message processing rule configuration
- Viewing rule information
- Enabling and disabling a message processing rule
- Changing rule settings
- Deleting message processing rules
- Allowlists and denylists
- Managing the cluster
- Creating a new cluster
- Viewing the cluster node table
- Configuring the display of the cluster node table
- Viewing information about a cluster node
- Adding a node to the cluster
- Modifying node settings
- Removing a node from a cluster
- Changing the role of a node in a cluster
- Deleting the cluster
- Restarting a cluster node
- Managing the SSL certificate of the cluster node
- Checking data integrity
- Modifying the network settings of a cluster node
- Managing roles and user accounts
- Backup
- Configuring Backup settings
- Configuring personal Backup
- Viewing the table of objects in Backup
- Configuring the display of the table of objects in Backup
- Filtering and finding messages in Backup
- Viewing information about a message in Backup
- Delivering a message from Backup
- Downloading a message from Backup
- Deleting a message from Backup
- Backup digest
- Event log
- Viewing the event log
- Configuring event table display
- Filtering email traffic processing events
- Filtering application events
- Viewing information about email traffic processing events
- Viewing information about an application event
- Application event types
- Exporting the event log
- Configuring the event log
- Message queue
- Reports
- General protection settings
- About computer protection against certain legitimate applications
- Configuring the Anti-Virus module
- Configuring link scanning
- Configuring the Anti-Spam module
- Configuring the Anti-Phishing module
- Configuring Content Filtering
- Configuring external services
- Preparing to configure SPF and DMARC Mail Sender Authentication for outgoing messages
- Configuring date and time
- Configuring the proxy server connection settings
- Updating Kaspersky Secure Mail Gateway
- Database update for Kaspersky Secure Mail Gateway
- Exporting and importing settings
- Participating in Kaspersky Security Network and using Kaspersky Private Security Network
- Integration with an external directory service
- KATA protection
- Integration with a single KATA server
- Integration with multiple servers of the KATA cluster
- Creating a configuration file for the built-in balancer
- Configuring and running the built-in balancer on a cluster node
- Adding a KATA server
- Configuring KATA protection settings
- KATA integration dashboard
- Adding, modifying, and deleting IP addresses of KATA servers
- Disabling KATA integration
- Managing the application over SNMP
- Configuring the snmpd service in the operating system
- Enabling and disabling the use of the SNMP protocol in Kaspersky Secure Mail Gateway
- Configuring SNMP server connection settings
- Enabling and disabling forwarding of SNMP traps
- Configuring encryption of SNMP connections
- Description of MIB objects of Kaspersky Secure Mail Gateway
- Exporting MIB objects
- Email notifications for Kaspersky Secure Mail Gateway
- Configuring notifications about application events
- Configuring notifications about bounce messages
- Configuring notifications about message processing rules triggering
- Configuring notification templates
- Using macros in notification templates
- Adding a unique message ID to the notification
- Configuring the address for messages sent by the application
- Authentication using the single sign-on technology
- Connecting to cluster nodes over the SSH protocol
- Editing MTA settings
- DKIM signature for outgoing messages
- Using the TLS protocol in the operation of Kaspersky Secure Mail Gateway
- Domains and configuration of email routing
- Publishing application events to a SIEM system
- Contacting Technical Support
- Glossary
- Advanced persistent threat (APT)
- Anti-Phishing
- Anti-Spam
- Anti-Spam Quarantine
- Anti-Virus
- Backup
- Backup digest
- BEC attack
- Certificate fingerprint
- Cluster
- Content Filtering
- Control node
- Directory service
- DKIM Mail Sender Authentication
- DMARC Mail Sender Authentication
- Email notification
- Heuristic analysis
- Kaspersky Anti Targeted Attack Platform
- Kaspersky Private Security Network
- Kaspersky Security Network (KSN)
- Kerberos authentication
- Key file
- Keytab file
- LDAP
- Malicious links
- Moebius service
- MTA
- NTLM authentication
- Phishing
- PTR record
- Reputation filtering
- SCL rating
- Secondary node
- Service Principal Name (SPN)
- SIEM system
- SMTP verification
- SNMP agent
- SNMP trap
- Spam
- SPF Mail Sender Authentication
- Spoofing
- TLS encryption
- Update source
- Virtual machine
- Information about third-party code
- Trademark notices
Creating message processing rules
To create a message processing rule:
- In the main window of the application web interface, open the management console tree and select the Rules section.
- In the upper part of the workspace, click Create.
A new message processing rule opens.
- In the left pane, select the General section.
- In the Rule name field, type the name of the new rule.
The rule must have a unique name in the list of Kaspersky Secure Mail Gateway rules.
- In the Description field, type the rule description.
- In the Mode settings group, select one of the following message processing options corresponding to criteria of the rule:
- Use the settings of scan modules to use the settings of Anti-Virus, Anti-Spam, and Anti-Phishing modules as well as Content Filtering settings.
The left pane displays sections where you can configure modules used by the rule.
- Reject without scanning to reject messages without scanning them with Anti-Virus, Anti-Spam, or Anti-Phishing modules, or applying Content Filtering settings.
- Delete without notifying the sender to delete messages without scanning them with Anti-Virus, Anti-Spam, or Anti-Phishing modules, applying Content Filtering settings, or notifying the sender about non-delivery.
- Skip without scanning to deliver messages without scanning them.
- Use the settings of scan modules to use the settings of Anti-Virus, Anti-Spam, and Anti-Phishing modules as well as Content Filtering settings.
- If you want to modify the priority of the rule, in the Rule priority settings group, set the position of the rule in the rule table.
By default, the rule is assigned the highest priority of all previously created rules.
- Under Sender, specify senders to which the rule must apply:
- Email
- On the Email tab, add email addresses to the list:
- To specify an address manually, click Add, enter an email address and click
. The button is available if the text in the field matches the email address format.If necessary, repeat the steps for the rest of addresses.
- To paste addresses from the clipboard, click Import, type or paste email addresses separated by commas or new lines, then click Import.
You can use the symbols "*" and "?" to create an address mask, and regular expressions beginning with the prefix "re:".
Regular expressions are not case-sensitive.
- If you want to edit a previously added address, click the address in the text box, make the necessary changes in edit mode and click . If necessary, use the search bar.
- To specify an address manually, click Add, enter an email address and click
- If you want to delete an address from the list, click
to the right of the address. To clear the list, click Delete all.Up to 100,000 addresses can be added.
Kaspersky Secure Mail Gateway will look for the specified email addresses in the SMTP session (value of the MAIL FROM command).
- On the Email tab, add email addresses to the list:
- IP
- Go to the IP tab and add sender IP addresses to the list:
- To specify an IP address manually, click Add, enter an IP address and click . The button is available if the entered value matches the IP address format.
If necessary, repeat the steps for the rest of IP addresses.
- To paste IP addresses from the clipboard, click Import, type or paste IP addresses separated by commas or new lines, then click Import.
You can enter an IPv4 address (for example: 192.0.0.1), an IPv4 subnet address with a mask (for example: 192.0.0.0/16), an IPv6 address (for example: 2607:f0d0:1002:51::4), or IPv6 subnet address with a mask (for example: fc00::/7).
- To specify an IP address manually, click Add, enter an IP address and click
- If you want to edit a previously added IP address, click it in the list, make the necessary changes in edit mode and click . If necessary, use the search bar.
- If you want to delete an IP address from the personal list, click to the right of the address. To clear the list, click Delete all.
Up to 100,000 IP addresses can be added.
- Go to the IP tab and add sender IP addresses to the list:
- LDAP: DN
- Go to the LDAP: DN tab and add LDAP accounts to the list:
- To specify an account manually, click Add, enter a value and click . When entering the value, a suggestion is displayed, listing accounts from the LDAP cache that contain the entered characters.
The suggestion for contact accounts is displayed if the fetching of contact emails is enabled in LDAP server connection settings.
If the name of the LDAP account includes a special character, use a backslash ("\") to escape the special character. Otherwise suggestion for the account is not displayed. For example, the if the name of the account is
exa,mple, enter it asexa\,mple. For more information and a list of characters that must be escaped, see Microsoft documentation.If necessary, repeat the steps for the rest of LDAP accounts.
- To paste an LDAP account from the clipboard, click Import, type or paste accounts separated by commas or new lines, then click Import.
- To specify an account manually, click Add, enter a value and click
- If you want to edit a previously added account, click it in the list, make the necessary changes in edit mode and click . If necessary, use the search bar.
- If you want to delete an account from the list, click to the right of the LDAP account. To clear the list, click Delete all.
The LDAP DN is matched to email addresses from the SMTP session (value of the MAIL FROM command).
- Go to the LDAP: DN tab and add LDAP accounts to the list:
To apply the rule, you must specify at least one sender.
- Email
- Under Recipient, specify recipients to which the rule must apply.
- Email
- On the Email tab, add email addresses to the list:
- To specify an address manually, click Add, enter an email address and click . The button is available if the text in the field matches the email address format.
If necessary, repeat the steps for the rest of addresses.
- To paste addresses from the clipboard, click Import, type or paste email addresses separated by commas or new lines, then click Import.
You can use the symbols "*" and "?" to create an address mask, and regular expressions beginning with the prefix "re:".
Regular expressions are not case-sensitive.
- If you want to edit a previously added address, click the address in the text box, make the necessary changes in edit mode and click . If necessary, use the search bar.
- To specify an address manually, click Add, enter an email address and click
- If you want to delete an address from the list, click to the right of the address. To clear the list, click Delete all.
Up to 100,000 addresses can be added.
Kaspersky Secure Mail Gateway will look for the specified email addresses in the SMTP session (values of the RCPT TO command).
- On the Email tab, add email addresses to the list:
- LDAP: DN
- Go to the LDAP: DN tab and add LDAP accounts to the list:
- To specify an account manually, click Add, enter a value and click . When entering the value, a suggestion is displayed, listing accounts from the LDAP cache that contain the entered characters.
The suggestion for contact accounts is displayed if the fetching of contact emails is enabled in LDAP server connection settings.
If the name of the LDAP account includes a special character, use a backslash ("\") to escape the special character. Otherwise suggestion for the account is not displayed. For example, the if the name of the account is
exa,mple, enter it asexa\,mple. For more information and a list of characters that must be escaped, see Microsoft documentation.If necessary, repeat the steps for the rest of LDAP accounts.
- To paste an LDAP account from the clipboard, click Import, type or paste accounts separated by commas or new lines, then click Import.
- To specify an account manually, click Add, enter a value and click
- If you want to edit a previously added account, click it in the list, make the necessary changes in edit mode and click . If necessary, use the search bar.
- If you want to delete an account from the list, click to the right of the LDAP account. To clear the list, click Delete all.
The LDAP DN is matched to email addresses from the SMTP session (values of the RCPT TO command).
- Go to the LDAP: DN tab and add LDAP accounts to the list:
To apply the rule, you must specify at least one recipient.
- Email
- Click Save.
If at least one list item under Sender and Recipient is specified in an unacceptable format, the rule cannot be saved. Fix all values highlighted with a red background and repeat the save operation.
The rule is created and added to the rule table in the Rules section.
For modified settings to be applied by Kaspersky Secure Mail Gateway, the rule must be enabled. By default, the new rule is disabled and not used by the application.