Views:

To address spoofed emails you can create a policy for filtering spoofed e-mail messages from the same domain as recipients. Normal spoofed e-mail messages spoof the recipient domain. Please note best practice is to have internal e-mail messages not be routed out of the Internet or through TMEMS. Create a policy to filter e-mail messages coming from your own domain.

 
Make sure intra-domain e-mail messages are not routed to the Internet.
 
  1. On your browser, login to Trend Micro Email Security administrator console.
  2. Go to Inbound Protection > Content Filtering, then click Add.
  3. Type name of the rule you are creating (e.g. Anti-Spoof Policy).
  4. Go to Recipients and Senders > Recipients, then add your domain.

    Recepients

    Click the image to enlarge.

  5. Go to Recipients and Senders > Senders, add the same domain.

    Senders

    Click the image to enlarge.

  6. Under Scanning Criteria, select No Criteria. Any e-mail message coming in to TMEMS from your domain and going to your same domain will be filtered.

    Scanning Criteria

    Click the image to enlarge.

  7. Under Actions, select Quarantine to have access to review the filtered e-mail messages.

    Quarantine

    Click the image to enlarge.

    Anti Spoof

    Click the image to enlarge.

  8. Click the Submit button.
Keywords: Email Security, spoofed emails, email filtering, content filtering, anti-spoof policy, domain security, email quarantine, inbound protection, email spoofing