This article explains the order in which Symantec Email Security.cloud scans inbound email.
Email traffic entering the Symantec.cloud infrastructure is checked and scanned in the following order:
AntiSpam Client approved list
AntiSpam Client blocked list
AntiSpam Public DNS block lists (PBL)
AntiSpam Signaturing System
ATP Cynic - Only available for domains enabled with Advanced Threat Protection
Antispam Skeptic Heuristics (including Newsletter Detection if enabled)
Email Impersonation Control
Note: The AntiSpam scanning order will only apply when enabled according to the AntiSpam best practice settings. When not following best practices, weaker actions such as 'Tag Subject' or 'Redirect to Admin' will mean that any scanner further down the order will potentially be triggered and their action taken. This is to ensure your protection from harmful or malicious phishing emails.
Imported Document ID: TECH226367
Subscribing will provide email updates when this Article is updated. Login is required to Subscribe