Kaspersky Secure Mail Gateway Help

About Kaspersky Secure Mail Gateway

Kaspersky Secure Mail Gateway lets you deploy a virtual mail gateway and integrate it into the existing corporate mail infrastructure. An operating system, mail server, and Kaspersky Lab anti-virus application are preinstalled on the virtual mail gateway.

Kaspersky Secure Mail Gateway protects incoming and outgoing email against malware and spam and performs content filtering of messages.

Kaspersky Secure Mail Gateway:

  • Scans incoming and outgoing email for spam, phishing, and malware. To respond to new threats promptly, Kaspersky Secure Mail Gateway protection components can use information from Kaspersky Security Network.
  • Detects infected messages and disinfects attachments.
  • Filters messages with links to malicious objects.
  • Detects and blocks mass mailing (including marketing mail-outs).
  • Saves backup copies of messages in Backup based on the verdicts of Anti-Virus, Anti-Spam, Anti-Phishing modules and Content filtering.
  • Saves messages from Backup to file and delivers messages to recipients.
  • Processes mail in accordance with the rules defined for groups of senders and recipients.
  • Performs content filtering of messages by the name, type and size of attachment (Kaspersky Secure Mail Gateway can determine the actual format and type of attachment regardless of its extension).
  • Lets you use mail filtering rules to specify users and user groups from Microsoft Active Directory and generic LDAP to enable message routing for certain email accounts and user groups.
  • Notifies the sender, recipients, and administrator about messages containing objects that are infected, suspicious, password-protected, or cannot be scanned.
  • Updates Anti-Virus, Anti-Spam, and Anti-Phishing databases from Kaspersky Lab update servers or custom resources (http and ftp servers) according to schedule or on demand.
  • Receives application runtime statistics via the SNMP protocol and lets you configure the application to send SNMP traps when certain events occur.
  • Lets you configure the settings and manage the application via a web interface.
  • Sends and receives messages via a secure TLS/SSL link.
  • Lets you verify the authenticity of senders using SPF, DKIM, and DMARC technologies.
  • Lets you sign outgoing email messages with DKIM signatures.
  • Lets you add notes to incoming and outgoing messages.
  • Adds dangerous attachment warnings to incoming messages.
  • Retrieves user information from various domains and grants users access to a personal Backup storage.
  • Lets you add, edit or delete information about domains (including local domains) and email addresses, configure Kaspersky Secure Mail Gateway settings for these domains and email addresses and configure email routing.
  • Lets you configure TLS security modes for situations when Kaspersky Secure Mail Gateway receives messages from another server (acts in the Server role) or sends messages to another server (acts in the Client role), as well as configure TLS settings for individual domains.
  • Lets you monitor the status of email traffic and usage of system resources and view lists of the latest detected threats in the web interface of the application.
  • Lets you monitor the program operating capacity via Kaspersky Security Center.
  • Lets you view the application event Log and download it to the hard drive.
  • Lets you upgrade the system via the web interface of Kaspersky Secure Mail Gateway.
  • Lets you quickly configure the MTA using the Quick MTA Setup Wizard.
  • Lets you add, change and delete TLS and DKIM encryption keys.
  • Lets you generate and view reports on the email message processing rules.

Kaspersky Secure Mail Gateway is distributed in the virtual machine template format OVA (Open Virtual Appliance).

Deployment of the template creates a virtual machine with a preinstalled CentOS 6.7 operating system, a mail server, and Kaspersky Security for Linux Mail Server application (hereinafter also referred to as "Kaspersky Security"). After deploying the virtual machine, you can configure it using the Initial Configuration Wizard.

See also

Kaspersky Secure Mail Gateway

Kaspersky Secure Mail Gateway interface

Hardware and software requirements

Distribution kit

Modes of operation of Kaspersky Secure Mail Gateway

Kaspersky Secure Mail Gateway traffic limit

Page top

Kaspersky Secure Mail Gateway interface

Kaspersky Secure Mail Gateway is managed using a web interface.

The web interface window contains the following items:

  • The management console tree in the left part of the application web interface window
  • The workspace in the right part of the application web interface window

Kaspersky Secure Mail Gateway management console tree

The management console tree displays the sections of Kaspersky Secure Mail Gateway and subsections of functional components of Kaspersky Secure Mail Gateway.

Kaspersky Secure Mail Gateway management console tree displays the following sections:

  • Monitoring – a section containing Kaspersky Secure Mail Gateway monitoring data.
  • Rules – a section containing message processing rules.
  • Domains – a section in which you can add, edit or delete information about domains and email addresses, configure Kaspersky Secure Mail Gateway settings for these domains and email addresses.
  • Encryption Keys – a section in which you can add, edit or delete DKIM and TLS encryption keys.
  • Backup – a section containing information about message Backup and a filter for finding messages in Backup.
  • Message Queue – a section containing information about the message queue of the MTA mail agent and a filter for finding messages in the queue.
  • Reports – a section containing reports on the operation of the mail server.
  • Settings – a section that lets you configure Kaspersky Secure Mail Gateway settings.
  • Quick MTA Setup is a setup wizard that configures the main MTA settings. You can use it to quickly integrate Kaspersky Secure Mail Gateway into your corporate mail infrastructure at the first startup of the Kaspersky Secure Mail Gateway web interface as well as redefine the MTA settings during subsequent startups of the Kaspersky Secure Mail Gateway web interface.

    After you complete all steps of the Quick MTA Setup, Kaspersky Secure Mail Gateway resets all values of MTA setting and replaces them with values that you specified in the Quick MTA Setup Wizard.

Workspace of the Kaspersky Secure Mail Gateway web interface window

The workspace contains information about the sections that you select in the management console and control elements for editing the application settings.

Settings in the workspace of the main window are grouped into settings groups for sections that let you manage Kaspersky Secure Mail Gateway settings.

See also

Kaspersky Secure Mail Gateway

About Kaspersky Secure Mail Gateway

Hardware and software requirements

Distribution kit

Modes of operation of Kaspersky Secure Mail Gateway

Kaspersky Secure Mail Gateway traffic limit

Page top

Hardware and software requirements

Software requirements for deploying the Kaspersky Secure Mail Gateway virtual machine image

An image of the Kaspersky Secure Mail Gateway virtual machine can be deployed on the following hypervisors:

  • VMware ESXi 5.5 Update 2.
  • VMware ESXi 6.0.

Hardware requirements for deploying the Kaspersky Secure Mail Gateway virtual machine image

To support deployment of the Kaspersky Secure Mail Gateway image, the resources allocated for the virtual machine must meet the following requirements:

  • E1000 network adapter
  • Available disk space: at least 100 GB
  • At least 4 GB of RAM
  • One quad-core processor

Software requirements for managing Kaspersky Secure Mail Gateway via the web interface

To run the web interface, one of the following web browsers must be installed on the computer:

  • Mozilla Firefox version 38.0.5 (39) or later
  • Internet Explorer version 11 or later
  • Google Chrome version 43 or later

See also

Kaspersky Secure Mail Gateway

About Kaspersky Secure Mail Gateway

Kaspersky Secure Mail Gateway interface

Distribution kit

Modes of operation of Kaspersky Secure Mail Gateway

Kaspersky Secure Mail Gateway traffic limit

Page top

Distribution kit

The application is available from online stores of Kaspersky Lab (for example, http://www.kaspersky.com, in the eStore section) and from partner companies.

The content of the distribution kit may differ depending on the region in which the application is distributed.

If Kaspersky Secure Mail Gateway is purchased through an online store, the application is copied from the store's website. Information that is required for activating the application will be sent to you by email after your payment has been received.

Page top

Modes of operation of Kaspersky Secure Mail Gateway

Kaspersky Secure Mail Gateway can run in normal mode, limited traffic mode, or certified mode.

In normal mode, Kaspersky Secure Mail Gateway is allowed to access the Internet and connect to the following servers outside the IT infrastructure of your organization:

In limited traffic mode, Kaspersky Secure Mail Gateway is not allowed to access the Internet and connect to servers outside the IT infrastructure of your organization.

In limited traffic mode, the settings of Kaspersky Secure Mail Gateway components that require Internet access take the following values by default:

In certified mode, Kaspersky Secure Mail Gateway is not allowed to access the Internet and connect to servers outside the IT infrastructure of your organization. Besides, when Kaspersky Secure Mail Gateway operates in certified mode, the administrator is not allowed to view the event Log from the administrator's menu of Kaspersky Secure Mail Gateway Administration Console.

You can select the certified mode of operation of Kaspersky Secure Mail Gateway when deploying the image of a Kaspersky Secure Mail Gateway virtual machine.

See also

Kaspersky Secure Mail Gateway

About Kaspersky Secure Mail Gateway

Kaspersky Secure Mail Gateway interface

Hardware and software requirements

Distribution kit

Kaspersky Secure Mail Gateway traffic limit

Page top

Kaspersky Secure Mail Gateway traffic limit

To switch Kaspersky Secure Mail Gateway to limited traffic mode:

  1. In the main window of the application web interface, open the management console tree and select the Settings section and Protection subsection.
  2. In the External services section, click the KSN Statement link to open the KSN Statement window.
  3. Select Do not accept.
  4. Click the Apply button.

    The KSN Statement window closes.

  5. In the main window of the application web interface, open the management console tree and select the Settings section and Protection subsection.
  6. In the External services section, click the Allow connection to DNS server link to open the External services window.
  7. In the list to the right of the name of the Allow connection to DNS server setting, select No.
  8. Click the Apply button.

    The External Services window closes.

  9. In the main window of the application web interface, open the management console tree and select the Settings section and Database update subsection.
  10. In the Application database update settings section, click the Update source link to open the Application database update settings window.
  11. In the Update source section, select Kaspersky Security Center.
  12. Clear the If inaccessible, use Kaspersky Lab servers check box.
  13. Click OK.

    The Application Database Update Settings window closes.

  14. In the main window of the application web interface, open the management console tree and select the Settings section and Protection subsection.
  15. In the Anti-Spam section, click any of the following links: Use KSN, Use enforced Anti-Spam Updates Service, Use reputation filtering, or Maximum scanning time to open the Anti-Spam settings window.
  16. In the External Services section, select No in the Use enforced Anti-Spam Updates Service drop-down list.
  17. Click the Apply button.

    The Anti-Spam settings window closes.

Kaspersky Secure Mail Gateway starts running in limited traffic mode.

See also

Kaspersky Secure Mail Gateway

About Kaspersky Secure Mail Gateway

Kaspersky Secure Mail Gateway interface

Hardware and software requirements

Distribution kit

Modes of operation of Kaspersky Secure Mail Gateway

Page top