From 14df34f8255a02adc9fc0a07d35fa4b152f51952 Mon Sep 17 00:00:00 2001 From: Maddy <130055405+Maddy-Cloudflare@users.noreply.github.com> Date: Tue, 22 Apr 2025 13:38:00 +0100 Subject: [PATCH 1/2] [Email Security] Update Gmail Disposition for MX --- .../prerequisites/gsuite-email-security-mx.mdx | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/src/content/docs/cloudflare-one/email-security/setup/pre-delivery-deployment/prerequisites/gsuite-email-security-mx.mdx b/src/content/docs/cloudflare-one/email-security/setup/pre-delivery-deployment/prerequisites/gsuite-email-security-mx.mdx index aaebcb54a16c628..ac17df01080309c 100644 --- a/src/content/docs/cloudflare-one/email-security/setup/pre-delivery-deployment/prerequisites/gsuite-email-security-mx.mdx +++ b/src/content/docs/cloudflare-one/email-security/setup/pre-delivery-deployment/prerequisites/gsuite-email-security-mx.mdx @@ -55,10 +55,10 @@ Go to **Compliance**, and create a [content compliance filter](https://support.g If you would like to quarantine the other dispositions, repeat the above steps and use the following strings for the other dispositions: -- `X-EmailSecurity-Disposition: MALICIOUS` +- `X-EmailSecurity-Disposition: BULK` - `X-EmailSecurity-Disposition: SUSPICIOUS` - `X-EmailSecurity-Disposition: SPOOF` -- `X-EmailSecurity-Disposition: UCE` +- `X-EmailSecurity-Disposition: SPAM` If desired, you can create a separate quarantine for each of the dispositions. From 146d60634c8918712915b92b06aa4d0efe3208a4 Mon Sep 17 00:00:00 2001 From: Maddy <130055405+Maddy-Cloudflare@users.noreply.github.com> Date: Wed, 23 Apr 2025 11:04:32 +0100 Subject: [PATCH 2/2] Specify that UCE = SPAM --- .../prerequisites/gsuite-email-security-mx.mdx | 2 +- .../deployment/inline/setup/gsuite-area1-mx.mdx | 4 ++-- 2 files changed, 3 insertions(+), 3 deletions(-) diff --git a/src/content/docs/cloudflare-one/email-security/setup/pre-delivery-deployment/prerequisites/gsuite-email-security-mx.mdx b/src/content/docs/cloudflare-one/email-security/setup/pre-delivery-deployment/prerequisites/gsuite-email-security-mx.mdx index ac17df01080309c..f733baa9d170442 100644 --- a/src/content/docs/cloudflare-one/email-security/setup/pre-delivery-deployment/prerequisites/gsuite-email-security-mx.mdx +++ b/src/content/docs/cloudflare-one/email-security/setup/pre-delivery-deployment/prerequisites/gsuite-email-security-mx.mdx @@ -58,7 +58,7 @@ If you would like to quarantine the other dispositions, repeat the above steps a - `X-EmailSecurity-Disposition: BULK` - `X-EmailSecurity-Disposition: SUSPICIOUS` - `X-EmailSecurity-Disposition: SPOOF` -- `X-EmailSecurity-Disposition: SPAM` +- `X-EmailSecurity-Disposition: UCE` (`UCE` is the equivalent of `SPAM`) If desired, you can create a separate quarantine for each of the dispositions. diff --git a/src/content/docs/email-security/deployment/inline/setup/gsuite-area1-mx.mdx b/src/content/docs/email-security/deployment/inline/setup/gsuite-area1-mx.mdx index df40adb560fd527..c799ffa074e88d9 100644 --- a/src/content/docs/email-security/deployment/inline/setup/gsuite-area1-mx.mdx +++ b/src/content/docs/email-security/deployment/inline/setup/gsuite-area1-mx.mdx @@ -155,7 +155,7 @@ When you are finished entering these details, select **SAVE**. * `X-Area1Security-Disposition: MALICIOUS` * `X-Area1Security-Disposition: SUSPICIOUS` * `X-Area1Security-Disposition: SPOOF` - * `X-Area1Security-Disposition: UCE` + * `X-Area1Security-Disposition: UCE` (`UCE` is the equivalent of `SPAM`) If desired, you can create a separate quarantine for each of the dispositions. @@ -212,6 +212,6 @@ Unlike the configuration in [step 2](#2-quarantine-malicious-detections) where t 4. In the **Message Tagging** section, select **Message is considered spam if the following header regexp matches**. -5. In the **Regexp** section, enter the string `X-Area1Security-Disposition: UCE`. +5. In the **Regexp** section, enter the string `X-Area1Security-Disposition: UCE` (`UCE` is the equivalent of `SPAM`). 6. Select **SAVE** to save the updated configuration.