Server Side Solution, virus and SPAM protection for corporate and ISP mail servers

Home Products eWall 3.0 Message Sniffer Setup

eWall v3.0

Please note: these steps are for adding Message Sniffer (SNF) after eWall 3.0 is installed. If you configure Message Sniffer while installing eWall these steps are done for you automatically.

Setting up SNF with eWall 3.0 consists of two main parts:

  1. Setting the SNF options and
  2. Creating SNF filters.

Setting the SNF options

  1. Open Control Panel -> Options -> General, navigate to the MessageSniffer tab;
  2. Check the SNF path parameter and make sure it's pointed at directory, containing the SNF server (SNFServer.exe). If it's pointed at wrong directory, correct the path and re-open the Control Panel -> Options dialog;
  3. Enter the License ID and Authenticated, received from ARM Research Labs;
  4. If you have installed Message Sniffer to run as a service with the Message Sniffer installer then skip this step. If you want Message Sniffer to run when eWall is started then select the Attach to eWall service;
  5. Now you can click Test SNF button to make sure SNF is configured properly;
  6. Re-start eWall Core service;

Creating SNF filters

When SNF options are set, the filters that will call the SNF must be created. This step is completed automatically by New Agent Wizard, when SNF is chosen in options. But to add the SNF support to the existing Agent use the following instructions:

  1. Open Control Panel, select Agent and click at Filters/Script tab;
  2. Click at OnConnect event and then New Filter button;
  3. Name it as Anti-spam (GBUdb) and select following conditions:

    sender IP in white list
    GBUdb code ...

    and then actions:

    set reply text
    disconnect

    Click at in, and it will change to not in. Click at ... near of GBUdb code and set it to more than 0. Click at text and type 554 Rejecting due to security policy (GBUdb). After all the filter should look like this:
    GBUdb filter
  4. Click at OnMessage event and then New Filter button;
  5. Name the new filter as SNF test and select following conditions:

    sender is authenticated
    sender IP in white list
    SNF code is ...

    and then actions:

    set reply text
    delete message

    Click at is, and it will change to is not. Click at in, and it will change to not in. Click at ... near of SNF code is and set it to more than 10. Click at text and type 554 Rejecting due to security policy (SNF). After all the filter should look like this:
    SNF filter

Now Message Sniffer is ready to scan emails.

© 2002-2012 Innovative Communications, All Rights Reserved

Privacy Policy  |  Terms and Conditions