Content filtering policy conditions and actions commonly use resources such as annotations, notifications, attachment lists, and dictionaries. You set up these resources from the Content > Resources menu. Before you begin to create a content filtering policy, make sure that you have the resources that you need. If you don't set up the resources in advance, you must save your policy in an incomplete state. You can then set up the resources and edit the policy to add them.
To create a content filtering policy
In the Control Center, select Content > Policies > Email.
On the Email Content Filtering Policies page, click Add.
Select a template and then click Select.
The default Blank template has no preprogrammed conditions or actions.
A Described Content template uses existing resources from the Content > Resources menu. For example, the Credit Card template looks for words in the Credit Card Number Keywords dictionary and the Credit Card pattern.
A Structured Data template includes conditions that require custom data from a Record resource. These conditions display "Not Defined" in red. You must set up the Record resources, and then edit the conditions to add the resources, before you can use a Structured Data template.
On the Add Content Filtering Policy page, type a name for the policy. The name must be unique and should describe the purpose of the policy.
If you want to view reports about violations of this policy, make sure that Track violations of this policy in the dashboard and reports is enabled. If you disable this option, you can view policy activity in the message audit log, but not in the dashboard or reports.
For example, you may want to enable this option to track violations of a policy against sending executable file attachments. You may want to disable this option for a policy that adds a privacy annotation to every outgoing message.
You can use the Enable or Disable decomposition of files in list option to limit which attachments are scanned. When this option is unchecked, which is the default setting, Symantec Messaging Gateway decomposes and scans all attachments.
To scan only the attachment types in a list, check this option and select Enable. Then select the attachment list from the drop-down menu.
To scan all attachment types except the ones in the selected list, check this option and select Disable. Then select the attachment list from the drop-down menu.
If you disable an attachment type, SMG does not scan files that are embedded in those attachments. For example, if you disable attachments that are in Word format, SMG does not detect an Excel file that is embedded in a Word file.
You can create additional attachment lists from the Content > Resources > Attachment Lists page. After you create an attachment list, the list name appears in the drop-down menu.
Select a Subsequent Content Filter Handling setting. This setting affects the next content filtering policy that triggers a verdict.
In the Apply to the following policy groups panel, check the box next to Policy Groups to enable this policy for all groups. Or check the boxes next to individual groups to enable the policy only for the selected groups.
On the Email Content Filtering Policies page, adjust the position of the new policy, if needed.