Configuring a Policy

Document created by user.oxriBaJeN4 Employee on Sep 11, 2015Last modified by user.oxriBaJeN4 Employee on Jun 9, 2017
Version 16Show Document
  • View in full screen mode

This guide describes how the Gateway Policy Editor allows administrators to view and manage policies, and access their definitions.


Applies To...


  • Administrators responsible for creating and editing gateway policies.




To create / change a policy:

  1. Log in to the Administration Console.
  2. Click on the Administration menu item. A menu drop down is displayed.
  3. Click on the Gateway | Policies menu item. The Gateway Policy Editor is displayed, which contains the following columns:

    Policy NameDisplays the policy name.
    DescriptionDisplays a description of the policy's purpose.
    PoliciesDisplays the number of configured policies.
    DefinitionsDisplays the number of configured definitions. If no definitions are required for a policy (e.g. an Anti-Spoofing policy) the column displays "N/A".  You can display a policies definitions, or create one, by clicking on the Definitions button.
    Tell Me MoreClick on this button to access the Knowledge Base page for the relevant policy.
  4. Click on the required Policy Type. A list of policies is displayed.
  5. Either select the:
    • Policy to be changed.
    • New Policy button to create a policy.
  6. Complete the Options section as required (see below).
  7. Complete the Emails From and Emails To sections as required (see below).
  8. Complete the Validity section as required (see below).
  9. Select Save and Exit. The policy has been configured.


Options Section


The Options section of a policy is different depending on the policy type. All policy types have a description to enable administrators to easily view it's purpose. Certain policies (e.g. Content Examination Policies) this is also displayed in the Mimecast archive. This helps determine which policies were applied to which emails.


See each specific Policy Type page for the options.


Emails From / To Section


Addresses Based On

Specify the email address characteristics the policy is based on. The options are:

The Return Address (Mail Envelope From)This default setting applies the Policy to the SMTP address match, based on the email's envelope or true address (i.e. the address used during SMTP transmission).
The Message From Address (Message Header From)Applies the Policy based on the masked address used in the message's header.
BothApplies the policy based on either the Mail Envelope From or the Message Header From whichever matches. When both match the specified value the Message Header From will be used.
This option is only available in the "Emails From" section.
Applies From / To

Specify the Sender characteristics the policy is based on. For multiple policies, you should apply them from the most to least specific. The options are:


Includes all email users (i.e. both internal and external).

This option is only available in the "Emails From" section.
Internal AddressIncludes only internal organization addresses.
External Address

Includes only external organization addresses.

This option is only available in the "Emails From" section.
Email DomainEnables you to specify a domain name to which this Policy is applied. The domain name is entered in the Specifically field.
Address GroupsEnables you to specify a pre-defined Directory or Local Group. The group is selected from the Profile Group field below using the Lookup button.
Address AttributesEnables you to specify a pre-defined Attribute. The attribute is selected from the Where Attribute drop down list. Once the Attribute is specified, an Attribute value must be entered in the Is Equal To field. This can only be used if attributes have been configured for user accounts.
Individual Email AddressEnables you to specify an SMTP address. The email address is entered in the Specifically field.
Policy Group

If a policy is configured for groups, this field can be used to specify the group it is applicable to. Click the Show Location field to display the path of the directory group or profile group.


Validity Section


Enable / Disable

Use this option to enable (default) or disable a policy. Disabling the policy allows you to prevent it from being applied without having to delete or back-date the policy. Should the configured date range of a policy be reached the policy will become disabled automatically.

Set Policy as Perpetual

Specifies that the Policy's start and end dates are set to Eternal. The result is the Policy never expires.

Date RangeYou can turn off the Set Policy as Perpetual option, and specify a start and end date for the Policy. Deselect the Eternal option and select the required dates.
Policy Override

Select this option to override the default order that policies are applied. If there are multiple applicable policies, this policy is applied first unless more specific policies of the same type have also been configured with an override.

Bi-DirectionalUse this setting if you want the Policy to also apply when the Policy's recipient is the sender and the sender is the recipient.
Source IP Ranges (n.n.n.n/x)Enter any required Source IP Ranges for the policy. These only apply if the source IP address used to transmit the email data, falls inside or matches the range(s) configured. IP ranges should be entered in CIDR notation.


See Also...