Hi, how can we help you?

Popular Tags: Price Reduction Abandonment Email Domain Birthday Voucher Change Plugin
Select Categories

Add an Incoming Block list Filtering Rule

March 14, 2024

You can add rules that apply to a specific domain in the Domain Rules tab or, if accessing from the Admin Level, to all domains linked to the logged in Admin in the Admin Rules tab.

1. In the Admin Level or Domain Level Control Panel, select Incoming - Protection Settings > Block list filtering rules

2. Navigate to the appropriate tab: Domain Rules or Admin Rules

3. Click on + Add rule

The dialog that is displayed here depends on whether you have enabled or disabled the Use advanced custom filtering rules option in the User profile page.
4. Configure the Block list rule as per the filter rule type:

Simple Block list Filtering Rule

If the Use advanced custom filtering rules option is disabled in the User profile page, you will see the Add a new simple filtering block rule dialog:
Add an Incoming Block list Filtering Rule | Picture 1

Enter the required information in each of the fields:

Field Description Match Operators Field value
Rule name Give the rule a memorable name - Rule name in text format
Match

Use the Match fields to structure your rule. The following options are available:

Subject

Can be refined by the following operators:

  • Is
  • Is not
  • Contains
  • Does not contain
  • Starts with
  • Ends with
 The part of the message subject to block in text format
From

Can be refined by the following operators:

  • Is
  • Is not
  • Contains
  • Does not contain
  • Starts with
  • Ends with

The part of the message header FROM address to block in a valid email address format

e.g.: Rocket Raccoon <rocket@example.com>

 

***Check the exact format from an example message header of the type you wish to block as the format may differ
To

Can be refined by the following operators:

  • Is
  • Is not
  • Contains
  • Does not contain
  • Starts with
  • Ends with

The part of the message header TO address to block in a valid email address format

e.g.: Rocket Raccoon <rocket@example.com>

 

***Check the exact format from an example message header of the type you wish to block as the format may differ
CC

Can be refined by the following operators:

  • Is
  • Is not
  • Contains
  • Does not contain
  • Starts with
  • Ends with

The part of the CC address to block that was contained in the message header in a valid email address format

e.g.: local-part@domain.invalid

 

***Check the exact format from an example message header of the type you wish to block as the format may differ
Country

Can be refined by the following operators:

  • Is
  • Is not
  • Contains
  • Does not contain
  • Starts with
  • Ends with
 The full Country name as is displayed in the Log Search > Location column e.g. Iran, Islamic Republic of, or United States
Continent

Can be refined by the following operators:

  • Is
  • Is not
  • Contains
  • Does not contain
  • Starts with
  • Ends with
 In the text field, enter the desired Continent name e.g. Europe, or North America
Message Body

Can be refined by the following operators:

  • Is
  • Is not
  • Contains
  • Does not contain
  • Starts with
  • Ends with
 The part of the decoded message content to block in text format
Recipient

Can be refined by the following operators:

  • Is
  • Is not
  • Contains
  • Does not contain
  • Starts with
  • Ends with

The SMTP envelope RCPT TO address to block in a valid email address format

e.g.: local-part@domain.invalid
Sender

Can be refined by the following operators:

  • Is
  • Is not
  • Contains
  • Does not contain
  • Starts with
  • Ends with

The SMTP envelope MAIL FROM address to block in a valid email address format

e.g.: local-part@domain.invalid
Sender IP

Can be refined by the following operators:

  • Is
  • Is not
  • Contains
  • Does not contain
  • Starts with
  • Ends with

The Public IP address of the sending server to block in a valid IP format

e.g.: 1.102.103.104
Sender Hostname

Can be refined by the following operators:

  • Is
  • Is not
  • Contains
  • Does not contain
  • Starts with
  • Ends with
 The associated DNS PTR record for the sender IP address to block
URL

Can be refined by the following operators:

  • Is
  • Is not
  • Contains
  • Does not contain
  • Starts with
  • Ends with
 -
Language

Can be refined by the following operators:

  • Is
  • Is not
  • Contains
  • Does not contain
  • Starts with
  • Ends with
 The language of messages to block using the ISO 639-1 two-digit language code - Language code
Attachment Type

Can be refined by the following operators:

  • Is
  • Is not
  • Contains
  • Does not contain
  • Starts with
  • Ends with
 The MIME type of attached files to block in text format
Attachment Name

Can be refined by the following operators:

  • Is
  • Is not
  • Contains
  • Does not contain
  • Starts with
  • Ends with
 The name or file extension of attached files to block in text
Attachment Type (auto-detect)

Can be refined by the following operators:

  • Is
  • Is not
  • Contains
  • Does not contain
  • Starts with
  • Ends with
 The MIME type of attached files to block in text format
Sensitive Data

Can be refined by the following operators:

  • is

The Type of sensitive data from a selection:

  • credit-card
  • bank-account
  • personal-identifier
  • health-identifier
  • any
We will match against the most common formats of these types of data – for example, a VISA credit card might be “4012888888881881”, or “4012-8888-8888-1881”, or “4012 8888 8888 1881”.
However, it will always be possible for someone determined to bypass these checks to do so, e.g. with “my credit card is 4012 then eight eights in a row then 1881”.
This functionality is intended to protect against accidental exposure rather than malicious intent.

Advanced Block list Filtering Rule

If the Use advanced custom filtering rules option is enabled in the User profile page, you will see the Add a new advanced filtering block rule dialog:
Add an Incoming Block list Filtering Rule | Picture 2
Field/Option Description
Rule name Enter the name you want to give this rule
Priority

Enter a number to represent the priority given to the rule

Rules are evaluated by Priority from the lowest number to the highest number, until one matches or all rules have been checked. All Allow list rules are checked before Block list rules regardless of priority.

 
Content Type

By default this field will display Header Name as initially the Match field is set to Header, however, this field will change or disappear as the Match field is changed:

Match Field Name Value
Header Header Name

restrict the check to a specific header. This will also match the decoded version of the header rather than the raw content.

You may enter a regular expression here, if required.
Message Body Content Type

Restrict the check to specific parts of the message for example text/plain, or text/.*.

You may enter a regular expression here, if required.
Language Automatic or Specified By default, language matches will be done against automatic language detection and when the sender specifies the language. To only match against automatic detection, use "automatic", or to only match when the sender specifies, use "specified"
Location Location Type

You must specify which type of location to match against. Valid values are:

  • "city"
  • "continent"
  • "country"
  • "represented_country"
  • "registered_country"
  • "latitude"
  • "longitude"

You may enter a regular expression here, if required.
Regular expression

Enter the regular expression for the rule

Use the Cheatsheet panel on the right of the page for examples of how to build your regex.
Unfortunately, the Technical Support team is unable to support any customisation of the predefined Rulesets or those you build yourself.

Due to the potential complexity in building a regex pattern, we advise that only users with regex experience should attempt to create new rules or customise existing ones.

 
Match

Use the Match fields to structure your rule. The following options are available:

  • Header
  • Raw Message
  • Message Body
  • HELO/EHLO
  • Recipient
  • Sender
  • Sender (Verified)
  • Sender IP
  • Sender Hostname
  • URL
  • Language
  • Location
  • Attachment Type
  • Attachment Name
  • Attachment Type (auto-detect)
  • Attachment Hash
  • Message Type
  • Sensitive Data
We will match against the most common formats of these types of data – for example, a VISA credit card might be “4012888888881881”, or “4012-8888-8888-1881”, or “4012 8888 8888 1881”. However, it will always be possible for someone determined to bypass these checks to do so, e.g. with “my credit card is 4012 then eight eights in a row then 1881”. This functionality is intended to protect against accidental exposure rather than malicious intent.

 
Flags The following flags are available:
  • i (ignore case)
  • m (^ and $ match start and end of line),
  • s (. matches newline)
  • x (allow spaces and comments)

5. Click Save

The new rule will appear in the list shortly after saving.

For any inquiries or if you encounter any issues, please feel free to reach out to us via email at support@newpages.com.my or through WhatsApp at 010-799 1461 (David).
Tags:
Spam Expert

Related Article: