HomeHome ArticlesArticles Most Popular ArticlesMost Popular Articles Most Helpful ArticlesMost Helpful Articles Request New ArticleRequest New Article
RSS Feeds
DrillDown Icon Table of Contents
DrillDown Icon Knowledge Base Information
DrillDown Icon Cyberoam Security Appliances (UTM and NGFW)
DrillDown Icon FAQs on Cyberoam and Sophos Firewall
DrillDown Icon Vulnerability Security Advisories
DrillDown Icon Best Practices & Policies
DrillDown Icon Protect Your Cyberoam Appliances from Power Fluctuations
DrillDown Icon Technical Library
DrillDown Icon Deployment
DrillDown Icon Registration & Licensing
DrillDown Icon System
DrillDown Icon Objects
DrillDown Icon Network
DrillDown Icon Identity
DrillDown Icon Firewall
DrillDown Icon VPN
DrillDown Icon IPS
DrillDown Icon Web Filter
DrillDown Icon Application Filter
DrillDown Icon Web Application Firewall (WAF)
DrillDown Icon IM
DrillDown Icon Quality of Service (QoS)
DrillDown Icon Anti Virus
DrillDown Icon Anti Spam
DrillDown Icon Create Outbound Spam Rules
DrillDown Icon Anti-Spam Filtering Scenarios
DrillDown Icon Why are inbound Emails from specific Email Addresses blocked by Cyberoam?
DrillDown Icon How do I report a False Positive?
DrillDown Icon Block Inbound Email Traffic From a Specific Domain
DrillDown Icon Archive Emails of Multiple Recipients
DrillDown Icon Release a False Positive Email
DrillDown Icon Configure Quarantine Digest
DrillDown Icon Allow and Block Emails using White or Black list
DrillDown Icon Why are incoming/outgoing Emails in my network being blocked with SMTP Scanning enabled in Firewall Rule?
DrillDown Icon From where can I check how much of the Quarantine Area has been used?
DrillDown Icon How do I check if Cyberoam Anti Spam has scanned an email?
DrillDown Icon How do I report a false negative, i.e., uncaught spam mail?
DrillDown Icon How can I bypass Spam scanning for authenticated traffic?
DrillDown Icon How to enable IP Reputation in Cyberoam?
DrillDown Icon How does Cyberoam manage the Quarantine Repository?
DrillDown Icon Why I am not able to release email from quarantine area of Cyberoam?
DrillDown Icon Logs & Reports
DrillDown Icon Clients
DrillDown Icon Cyberoam Maintenance
DrillDown Icon Compatibility
DrillDown Icon Archives
DrillDown Icon Cyberoam Virtual Security
DrillDown Icon Cyberoam iView
DrillDown Icon Cyberoam Central Console
DrillDown Icon Cyberoam's On-Cloud Management Service
  Subscribe Print PreviewPrint Current Article and All Sub-Articles
Rate Icon Rate Icon Rate Icon Rate Icon Rate Icon
Create Outbound Spam Rules

Applicable Version: 10.04.0 Build 214 onwards


Scan all outbound Email traffic to prevent the mail server of the network from getting blacklisted.


Outbound Spam Module should be subscribed.


You can scan all outgoing Emails for Spam by following the steps given below. You must be logged on to the Web Admin Console as an administrator
with Read-Write permission for relevant feature(s).

Step 1: Create Spam Rule

Go to Anti Spam > Spam Rules >Spam Rules and click Add to create a new Spam Rule with following parameters.






Specifythe name for Anti Spam Rule.

Recipient Email

Any Email Address

Select Recipient Email Address.

Sender Email

Any Email Address

SelectSender Email Address.

IF Condition

Outbound Anti Spam Module has Identified Mail As ‘Spam’

Specified action will be taken if the Anti Spam module has identified the Outbound Email to be Spam.

SMTP Action


Select Action to be taken for the SMTP traffic.


 Click OK to create the Spam Rule.  

Step 2: Enable Anti Spam Scanning in Firewall Rule

Go to Firewall > Rule > IPv4 Rule and click Add to create a new Firewall Rule with following parameters. 




Source Zone


Select source zone to which the rule applies.

Destination Zone


Select destination zone to which the rule applies.

Source Network/Host

MailServer IP

Select source host or network address to which the rule applies.

Note:You can add MailServer IP host directly from this page itself or from Objects > Hosts > IP Host page.

Destination Network/Host

Any IP Address

Select destination host or network address to which the rule applies.



Select rule action.

AV & AS Scanning


Selectthe protocol for which the virus and Spam scanning is to be enabled.

Log Firewall Traffic


Enable to view the reports of the mails being sent from the mail server to other mail server in WAN.


Click OK to create the IPv4 Firewall Rule. 

The above configuration will scan the outgoing traffic of mails for Spam.








                                                                                                                                                                                              Document Version: 1.0 – 27 May, 2015

Article ID: 3128