SMTP

Before you complete these steps, import and verify your domains on the Configuration page as described in User Added Domains

For an Inline/SMTP message source, you need to set up your mail host to send traffic to Secure Email Threat Defense. This involves changing your DNS MX record and DNS TXT A record. The steps will vary depending on your provider

To allow Secure Email Threat Defense to receive incoming email on behalf of your domain, update your DNS MX record to point to yourSecure Email Threat Defense environment. The destination depends on where your Secure Email Threat Defense instance is hosted.

Table 1. DNS MX Record Settings by Region

Environment	DNS Record	Type
North America	mx.us.etd.cisco.com	A
Europe	mx.eu.etd.cisco.com	A
India	mx.ap.etd.cisco.com	A
Australia	mx.au.etd.cisco.com	A
United Arab Emirates	mx.ae.etd.cisco.com	A
Beta	mx.beta.etd.cisco.com	A

Configure your domain to enable Secure Email Threat Defense to deliver incoming email to mailboxes. IP addresses for each region are mentioned below, however we recommend retrieving the updated list of IPs using the corresponding host name.

Example: dig host.<region>.etd.cisco.com retrieves the corresponding IPs for the region.

Table 2. Regional Host Names and IPs

Region/Environment	Host Name	IPs
North America	host.us.etd.cisco.com	3.233.202.39 52.4.38.100 52.21.33.60 3.218.110.126
Europe	host.eu.etd.cisco.com	18.158.246.66 3.122.146.98 3.121.252.9
India	host.in.etd.cisco.com	13.126.150.150 15.207.156.30 13.235.117.17
Australia	host.au.etd.cisco.com	3.24.0.238 52.65.229.190 52.62.51.239
United Arab Emirates	host.ae.etd.cisco.com	40.172.72.5 40.172.180.89 40.172.203.161
Beta	host.beta.etd.cisco.com	3.83.181.165 3.212.52.157 35.171.255.176 34.237.73.142

Configure your DNS TXT record

Table 3. TXT Record Settings by Region

Region/Environment	TXT Record
North America	`v=spf1 include:spf.us.etd.cisco.com -all`
Europe	`v=spf1 include:spf.eu.etd.cisco.com -all`
India	`v=spf1 include:spf.in.etd.cisco.com -all`
Australia	`v=spf1 include:spf.au.etd.cisco.com -all`
United Arab Emirates	`v=spf1 include:spf.ae.etd.cisco.com -all`
Beta	`v=spf1 include:spf.beta.etd.cisco.com -all`

In Secure Email Threat Defense, go to Configuration > Analysis configuration > Domains > Imported Domains and click Update List. Verify that the expected domains are imported and can accept traffic.