How to configure the Content Filtering from Bitdefender Security for Exchange and how it works
Content Filtering is used to filter the mails by their content in order to stop malicious or offensive mails sent from certain addresses from entering the company, or to redirect mails on different addresses in the company. Mails are filtered by comparing the mail headers (subject, sender, receivers) with a set of keywords defined by the user. Content Filtering checks messages to see if the subject, the sender's or the recipient(s)' address contain certain specified strings. If a defined string matches one of these mail headers, the message is detected and the specified action is taken. Both incoming and outgoing SMTP mail is verified. Different filtering policies can be defined for users and user groups. The rules are those that specify the filtering settings and the actions to be taken on the messages that match the rule, based on the groups to which the sender and the recipients belong.
By default, after installation, the Content Filtering and the Attachment Filtering options are disabled:
And you are alerted in the Dashboard that you need to address these issues. After checking the tick box and enabling the Content Filtering, you need to configure it:
For configuration, you need to go to Policies and either create a new one, or use the existing Default one:
After double-clicking on the Default policy, or after you select the policy and click on Properties, you will get this screen:
From where you can begin configuring the policy for the Content Filtering. The Default policy is always Enabled and the status cannot be changed. But if you create another policy, then you can enable it, or disabled it as you need.
The next step is to configure the From and To groups that will be affected by the Content Filtering:
In the next tab you can specify the options that will be taken when the Content Filtering module will scan an e-mail:
As you can see above, you can set the Content Filtering to scan for "subject", "sender", "recipients" or the "body" of the e-mail. Each of the options can be configured separately as seen in the next screen-shots:
As you can see in the screen-shots, you have a wide range of selections (Text, Wildcard Expressions (e.g.: *porn; *porn*; porn*) or Regular Expressions).
The next tab - Actions - allows you to modify, enable or disable the actions that will be taken when the Content Filtering will scan an e-mail. You have here the options (as seen below) to Delete e-mail, Quarantine, Deliver e-mail (with further options when activated) and Reject e-mail.
Also, when you check the option to Deliver e-mail, the grey fields become active and you can enable the options to Modify the subject of the e-mail - adding a customizable tag to it and you can also add a customizable Header tot the e-mail as seen below:
The last tab allows you to specify whether you will be informed of e-mails that have matched the rule set in the Content Filtering or not.