Hexamail Guard provides the most comprehensive set of antispam, antiphishing and antivirus features of any server based email gateway software. This provides effective elimination of email threats before they penetrate your organization and allows you to decide on the techniques that are best suited to your email system.
Many spamblockers simply rely on central "finger print" files or lists of IP addresses to block. Often this approach fails to pervent initial outbreaks of new types of spam or spam from new sources. Hexamail employs additional powerful content inspection techniques that read the actual email, ensuring even spam from new IP addresses, or of an entirely new nature is blocked. You can enable Bayesian analysis, DNS based blocklists, keywords and expression matching, sender blacklisting, whitelisting, challenge-response for blocked email, email tagging, email deletion or any combination of the techniques you wish!Download Free Trial >
Add a powerful Antivirus option to Hexamail Guard, allowing automatic processing of all suspect attachments and elimination of virus, worms, scripts and other malicious content. Hexamail has partnered with award-winning Antivirus software provider, BitDefender. The combined solution from BitDefender and Hexamail provide customers with total email protection.
Hexamail Guard integrates automatically and seamlessly with all versions of Exchange providing straightforward integration and easy administration. Hexamail can integate with Exchange 5.5, 2000, 2003, 2007, 2010 or 2013 either on the same machine as Exchange or on a separate server if required.
SPF (Sender Policy Framework) checking is fully supported, allowing you to add SPF checking to your existing mailserver. SPF ensures that email is only accepted if it came from the servers designated by the sending domain's policy, where available. For domains that publish SPF records this means you can verify the sender is legitimately allowed to send email from the domain. In particular this can help reduce Phishing, where senders spoof email from another domain.
DomainKeys Identified Mail (DKIM) checks are performed on any DKIM signed email. This verifies the sender is allowed to send email from the domain specified. It also verifies that the email has not been tampered with or forged. In particular this can help reduce phishing, where senders spoof email from another domain.
SURBL is an RBL designed to be used to block or tag spam based on URIs (usually their domain names) contained within the message body. It is not a conventional RBL in that it's not intended to block the source of spam messages. Instead, SURBL can be used to block spams based on their message content. http://www.surbl.org/
Bayesian pattern matching is used to analyze the entire content of incoming email: this prevents the mistakes made by relying on single keywords or rules whilst ensuring the filters are robust to subtle changes in language, deliberate misspellings and tricks typical in spam. This allows Hexamail software to provide unrivalled accuracy and reliability when detecting spam.
Hexamail Guard integrates automatically and seamlessly with all versions of Small Business Server providing straightforward integration and easy administration. Hexamail can integate with SBS 2003, SBS 2008 and SBS 2011 either on the same machine as SBS or on a separate server if required.
SPAM detected by Hexamail can be stored in a quarantine for later review. The quarantine allows the administrator to quickly review and send on or delete large numbers of email with a single click. A special viewing window allows the safe viewing of any suspect email without inadvertently triggering worms, virus or pop ups.
The administrator can optionally allow some or all users to review their own quarantined SPAM via a web based interface. Users are automatically alerted to new email arriving in their quarantine and can empty their quarantine with a single click from the alert email. Alternatively they can login to a secure web interface to selectively delete SPAM email and accept legitimate email.
Zimbra, Zarafa, Kerio mailserver, IMailserver, hMailserver, Lotus Notes, NTMail, SL Mail, QMail, Exim, Lotus Domino 5, LSMTP, MailSite, MDaemon, MetaInfo, Sendmail, MS IMS/IIS, Netscape Messaging Server, NTMail, and Post.Office are all supported by Hexamail. Hexamail can be used in conjunction with any SMTP compatible mail server, allowing you the freedom to choose your email server now and in future.
For a corporate anti-spam policy to be successful it must be enforced at the server level removing the need for client-side installs and end-user training. Not only does this ensure the most straightforward maintenance but also ensures the solution is as cost-effective as possible to deploy.
Hexamail Guard can automatically DKIM sign all outgoing email. DKIM signing is used to ensure email from your domain cannot be spoofed or tampered with. In addition to signing outbound email, Hexamail generates and manages DKIM keys, DKIM _domainkey DNS entries, and Author Domain Signing Practices DNS entries (your domain signing policy).
Hexamail's anti-SPAM module eliminates the cost, time and frustration your workers spend on unsolicited E-mail (junk/SPAM) by blocking the majority of SPAM emails before they ever reach the user. Using automatic built in heuristics combined with all the best known techniques such as pattern matching, connection restrictions, ORB, real-time black hole lists and any desired additional administrator controlled rules it offers the most comprehensive toolbox for effective SPAM blocking available. The combination of best of breed SPAM blocking techniques ensure almost all SPAM is stopped in its tracks, while the automatic analysis of outgoing email traffic ensures false positives are minimal. The SPAM filtering software is entirely under your control, with no privacy, security risks and no additional latency introduced into your email system as is the case with many hosted solutions.
Automatic white list generation from senders contacts and email message threads coupled with intelligent on-the-fly white list detection. This ensures legitimate senders email do not get blocked by the SPAM blocker
Challenge-response features to allow senders to verify and have email automatically accepted and their address whitelisted
Temporarily fail connections from new IP, sender and recipient sets to effectively block spam software, and BotNets. Automatically whitelists your regular senders so that no delay is experienced for legitimate communications.
Dynamic Adaptive Honeypot. The Honeypot uses spam sent to chosen honeypot addresses to automatically generate adaptive intelligent agents, known as "bees". These identify and block similar spam. This provides realtime protection against new spam types, sender IPs, and specifically image spam.
Full Bayesian statistical pattern matching providing highly accurate (better than 99%) spam blocking with minimal false-positives (emails incorrectly marked as spam). Selectable pattern matching subcategories allowing bypass of pattern matching for specific types of spam, such as 'Money Making', 'Recruitment', 'Privacy', 'Competitions' etc. Multiple thresholds for pattern matching allowing marking, blocking or automatic deletion of identified spam. Email accepted or deleted from the quarantine is used to further the Bayesian matchign for future email.
Easy to use white list management facility allowing you to maintain lists of email addresses that you never want blocked. Users each have their own personal white lists and senders can be automatically whitelisted if a blocked email is released from the quarantine.
Full SPF (Sender Policy Framework/Sender ID) support and failure blocking. Helps prevent phishing attacks
Full DomainKeys Identified Mail (DKIM) support and failure blocking. Helps prevent phishing attacks
Full support for DNS-based URL checking of URLs within emails Built in SURBL support for DNS-based URL checking of URLs within emails
Block IP addressesfrom relay, sending inbound email. Whitelist IP addresses so that they are never blocked, or white list IPs for relay. Use DNS based databases to block known spam IP addresses
Full support for multiple configurable DNS based spam protection databases. Dial-Up User Lists (DULs), Real time Black hole Lists (RBLs), Spamhaus SBL, XBL and Relay Spam Stoppers (RSS) are all supported! Override to allow receipt from known good sender addresses
Spam quarantine with safe email viewer that doesn't trigger virus, worms, popups or other malicious code. The administrator can optionally allow users to review their own spam using a web-based quarantine view. Users and administrator can be automatically alerted when they have spam in the quarantine to review
Blocking based on strings, wildcards, word/phrase, regular expression matches in the email content or subject Configure different actions to perform for each expression matched.
Blocking based on strings, wildcards and phrase matches in the email sender address Elimination of emails with missing, undisclosed, invalid or suspect sender addresses Easy to use one-click sender blocking facility to allow direct blocks of unwanted newsletters or repeat offenders.
Blocking based on country of client IP Address. This allows weighting, blocking or deletion of email originating from specified countries.
Configurable automatic blocking of graphical or image-based emails. The system performs sophisticated checks on any attached or included images to identify image based spam and block it.
Hexamail automatically inspects PDF attachments for textual and image based spam and blocks if an attachment contains spam content
Hexamail automatically unpacks ZIP attachments, identifies malicious contained files and even reads the textual content to detect spam attachments
Configurable automatic blocking of emails with suspect MIME headers
Automatically block NDR Spam attacks by detecting NDRs from spoofed recipients, to false recipient addresses, or to nominated bad addresses.
Configurable automatic blocking of emails from suspect Mailer programs
Automatic text style and font analysis and blocking
Configurable automatic blocking of emails containing web bugs, inline framesets, popup windows etc.
Configurable automatic blocking of emails with dangerous or suspect attachments
Configurable automatic identification and blocking of emails with suspect recipient lists
Configurable automatic verification of replyto/sender
Configurable spam action options, including quarantine storage, subject line marking, forwarding, blocking and deletion
Instead of having to laboriously enforce corporate signatures in every email client in your organization, Hexamail Guard allows you to configure a corporate signature once and have it automatically added to all outgoing email. This helps prevent additional network traffic from redundant signatures on internal emails and ensures you can be confident that every external email will contain the required signature.
In some instances it is desirable to prevent emails to or from certain sources or destination companies. For example, perhaps you wish to ensure that no emails from recruitment agencies or ex-employees reach your staff, or prevent all outgoing emails to a competitor. In other situations it is the contents of the email that requires blocking. This can often be outgoing or incoming offensive material, such as pornography, swearing, or other undesirable material. Blocking works in concert with alerting to ensure that emails can be systematically blocked, stored and a nominated party alerted to the incidence of the blocked email.
Alert Admin when blocking emails
Alert admin if blocked email store reaches a configurable size
Allow return to sender of blocked emails
Configurable response to sender with optional blocking reason
Forward blocked emails to nominated account
Override block if containing specific content phrases or wildcards
Block if containing specific content phrases or wildcards
Block if missing specific content phrases, allowing a form of send password in the content
Configurable sender address white lists
Configurable sender address block lists
Configurable sender name block lists
Configurable recipient block lists
Block if too many recipients
Block undisclosed sender emails
Block undisclosed recipient emails
Block by white list of allowed IP
Block by disallowed IP
Block based on email size
Store blocked email for later inspection/archiving or resending
Blocked email store maintenance interface and send on options
Block if contains phrases or wildcards in the content
Block if contains phrases or wildcards in the subject line
Block if missing specific subject phrases, allowing a form of send password in the subject line
Block emails with attachments of specific types
Remove specific attachment types, e.g. worms, virus and other malicious types
Loose talk costs money. A poor choice of words in an outgoing email with or without appropriate disclaimers can be a costly business today. Hexamail Guard allows the censoring or offensive or inappropriate words from all outgoing (and optionally incoming) emails, ensuring that your corporate voice is as clean and virtuous as your reputation.
Hiding of obscene/forbidden phrases/words/wildcards in the content
Hiding of obscene/forbidden phrases/words/wildcards in the subject line
Configurable hide string, e.g. ****** or !CENSORED!
Configurable white list of users address matches to bypass the censoring
Support for emails attached to emails
Configurable mark string to optionally alert recipient the email has been censored
Option to block obscene emails
Option to forward obscene emails to nominated address or the administrator
Censored emails stored for later archiving/forwarding/sending or removal
Automatic alert when censored store reaches configurable size
Detect outbound email from multiple domainsAutomatically detect existing marketing insertsInsert HTML text or image marketing insertsDeliver to the recipients Automatically add advertisements and marketing inserts to the footer of all outgoing emails. Create and manage mini-email marketing campaigns to get to every eyeball that sees an email from your company!
Configurable email marketing inserts
Automatic fuzzy detection of existing marketing insert
Override or disable for specific domains
Automatic conversion of HTML to text inserts when required
Do you know what kind of information is leaving your company by email? While many organizations have strict physical security and diligent gatekeepers guarding against physical theft or unauthorized removal of materials, their electronic gatehouse is nonexistent. The alerter allows you to alert specified users to various types of email passing through the guard layer.
Standard rule types for common usage: Offensive Material, Potential Virus, Lengthy Discussion, etc. Entirely configurable rules engine allowing administrator controlled rules to trap almost any type of email.
Virtually unlimited number of rules, and alert recipients.
High-performance rules engine ensures low-latency filtering of email traffic both incoming and outgoing.
The responder allows automatic out-of-office responders to be set up for nominated email accounts. These responders include automatic scheduling to allow the responder to be set up in advance and engage/ disengage automatically on the required dates or schedule.
The Group Distribution module allows powerful group forwarding features, allowing email discussion groups to be setup, including closed, internal and public groups. Sophisticated rules allow you to determine who can and can't send to a group, what sort of content they can send (for example, you may wish to prevent large attachments going to a mobile sales force on dial-up).
Internal Groups that only internal users can email to
Automatic Group resolution to prevent group feedback and autoresponders to groups
Closed Groups that only group members can email to
Send to group based on phrases or wildcards in the contents
Send to group based on phrases or wildcards in the subject line
Automatic identification of group emails
Outgoing lists and groups also supported, with address hiding
External group responses rerouted to original sender
Message size restrictions
Group distribution address hiding
Attachment size and type restrictions
Autoresponse to group elimination
Email subscribe requests
Automatic group signature
Support for Newsletter format
Moderator controlled groups
Internal/Closed group postings can be moderated
Automatic discussion archiving
Automatic message digests
Incoming emails can place a huge burden on the nominated recipient. Often several email addresses are provided publicly for information, questions and other telemarketing activities. More often than not emails arrive to all addresses about a diversity of subjects, with little relationship between the email address and the subject matter. For example, a company-wide email address such as email@example.com will receive speculative employment queries, requests for information, invitations to tender, unsolicited junk mail, technical support questions etc. etc.
Having a single nominated recipient quickly results in the recipient becoming over-burdened with email. Studies show that having multiple recipients results in no one giving the incoming message stream the required attention.
The solution? Intelligently route each incoming mail based on the nature of the subject, content, and any attachment to the most suitable respondent recipient.
Routing uses rules concerning the subject line, contents, and previous message chain to ensure that the correct recipient is initially identified and then continues the correspondence when required.
Bounce email by rules/phrases
Redirect email to another address
Automatic language detection and rerouting for each language
Support for Chinese, Czech, Danish, Dutch, English, Finnish, French, German, Hungarian, Icelandic, Italian, Norwegian, Polish, Portuguese, Spanish, Swedish, and Turkish
Route email by rules
Route email by phrases
Redirect group email
Route based on date
Route based on day and time of day
Route based on size
The POP3 reader module acts as a POP3 connector, automatically downloading emails from any configured POP3 or IMAP accounts on external servers, and reroutes the emails to any internal mailbox or other external email account.
Highly efficient multiplexing communications used to download from many accounts simultaneously
Individually configurable download schedules
Supports SSL servers for both POP and IMAP including Gmail
Download schedules as short as 1 minute permitted
User can configure their own accounts via a web interface or IIS
Modes to download all or only new email for each user
Catch-all and individual accounts supported
IMAP Support including configurable folders
Multi-domain catch-all accounts supported
Full Gmail Support insluding all hidden Gmail IMAP folders like [Gmail]/All
Sophisticated rerouting and readdressing options including subject, sender and recipient rerouting
Export email to files as text or MIME
Export attachments to files
Emails are routed through all processing modules, allowing for antivirus scanning, spam blocking, routing, alerting, responders and all other Hexamail features!
Retrieves messages from mailboxes located on any number of Internet Service Providers (ISP).
Check and download new messages as often as you require, with schedule interval resolution of 60 seconds.
Automatically delete, expire or retain the emails on your email account
SSL fully supported, allowed secure retrieval of emails from SSL compliant mailservers.
Support secure logon with APOP (Authenticated Post Office Protocol).
Retrieves messages from more than one mailbox at the same time. This ensures that mailboxes with large volumes of email do not hold up processing of other mailboxes.
Reroute to new recipients based on the original sender address
Reroute to new recipients based on the original subject line with wildcard matches
Allows forwarding of email to any other address, mailbox or corporate email server. Route email by domain to different servers or smarthosts
The attachment module automatically archives attachments from all email. It also optionally removes the attachment and replaces it with a link allowing the attachment to be served more efficiently from a webserver. This prevents users having to download attachments they don't need or wish to refer to later. Attachments are automatically deduplicated if sent to multiple recipients: you only need store one copy of each file received or sent!
Store all attachments in a central file store
Automatic compression of non compressed attachment types
Automatic deduplication and instancing of replicated attachment files, offering MASSIVE storage and processing savings on your mailserver
Customizable attachment replacement links
Powerful attachment store query tool
Resend and export attachments
Hexamail Secure module provides is a centralized automatic email security solution. It can cryptographically sign email using DKIM signatures to ensure email from your domain cannot be spoofed. It also helps you manage your DKIM signing public/private key pairs and DNS entries.
DKIM signing allows DomainKeys Identified Mail signatures to be automatically added to all outbound email from your server. These signatures guarantee to the next server that the email has not been tampered with and when combined with Author Domain Signing Practices guarantees that the email originates from your server(s).
Hexamail automatically creates the required crytopgraphic public/private key pairs requried for DKIM signing. They private key never leaves your server ensuring spoofing of your DKIM signatures is impossible.
DKIM allows for multiple different selectors (or key pairs) to be used for signing. Hexamail manages these and automatically signs email with the appropriate selector.
The Secure module automatically generates the DNS entries required for the DKIM signature verification process, allowing recipient servers to verify your email signatures. Simply cut and paste the generated DKIM DNS entries into your DNS management interface as a TXT record.
Author Domain Signing Practices ensure that only signed email from your domain be accepted by recipient servers, allowign them to reject spoofed email.
Each report can be fully configured to your requirements
Scheduling allows report publication on any time period
Archiving of reports uses compression to minimize disk usage and allow for longer term archives
Standard HTML publication allows easy viewing and printing
Reports can be exported into standard HTML
Full-color graphs are used in the reports to ensure the clarity of vital information
The antivirus module automatically scans all incoming email attachments for virus, worms and trojans. If identified, the email can be marked so that the end user is aware of the infected content, blocked completely so that the end user cannot inadvertently execute a virus or a script, or the infected attachment can be removed and a comment added to the email to inform the user of the action taken. All processed emails can be optionally stored in a quarantine for later review, resend or deletion.
The embedded BitDefender antivirus engine features outstanding detection abilities together with high performance. You can expect 100% detection of In-the-Wild viruses, Trojans and malware. The award winning, internationally certified antivirus engine from BitDefender features proprietary technologies, based on innovative ideas and leading trends in the information security industry. It continues to be internationally recognised by independent organisations which reward outstanding results through numerous prizes and certifications, Av-Test.org, Virus Bulletin, ICSA Lab, Checkmark, PC World Top 100, ComputerActive and Which? to name but a few.
Automatic updates are another key point in virus protection, both the virus database and the program itself can be updated automatically. The updates are incremental, and only new data is downloaded, thus ensuring updates are timely and efficient.
Allow alerts to senders of infected emails
Configurable response to sender with optional blocking reason
Hexamail Archiver module provides is a centralized automatic email archiving solution. Highly efficient full-text indexing and compression algorithms ensure that the most scalable and high performance email archive is generated entirely automatically from all of your email. Hexamail's email archive software leverages state of the art indexing and compression technology to create the most compact and high performance index of email data. Inferior solutions often simply push emails to relational databases or worse, file systems. Such systems suffer from poor scalability, lengthy query/discovery times and extremely high storage requirements: often requiring more space for the archive than the original emails!
Native high-performance C++ archiving code ensures that emails are archived and indexed in realtime. The unsurpassed performance allows the archive to be used live by end-users to retrieve old, deleted, or difficult to find emails from a web-interface.
Archiving of 100s of millions of emails in a single archiver is possible, allowing many years of emails to be archived on a single server or drive.
All email content (MIME) is retained compressed, allowing accurate records to be retained while minimizing storage. Emails are automatically deduplicated. Save costs of storages devices, upgrading servers and backup time and facilities.
Full-text indexing automatically takes place on archiving. This allows your valuable resource of archived emails to be leveraged for knowledge management, auditing and discovery within your organization.
Some inferior archiving solutions simply push email content into a relational database. This can be costly in database licenses, slow to retrieve email and extremely demanding of disk space and other machine resources. Be sure to check the licensing implications and costs of such systems before purchase. Hexamail is a complete solution requiring no third party database licenses.
Archiving takes place on your servers, within your network. Sensitive emails need never leave your organization, eliminating trust, hacking, or security breach concerns typical of third party service based archive solutions providers.
Active Directory integration allows automatic import of your users and restriction of their access to only their emails
Full secure SSL access to web based knowledge management, discovery and search interfaces.
The Archiver module can index email from almost any source including Exchange, maildir, mbox, hMail, iMail, MDaemon, Hexamail, POP3, SMTP, and PST
Index email driectly from Exchange 2000 onwards
Index any PST files from Outlook clients or Exchange server
Content can be retained for periods matching typical regulatory requirements such as Sarbanes Oxley, European Union ISP Communications Data retention, SEC Rules, NASD, HIPAA and Graham-Leach-Bliley Act.
Full MIME storage ensures your chosen email archive solution adheres to all regulations now and in future. Regulations such as Sarbanes-Oxley can be costly to implement, Hexamail Vault eliminates the cost for archiving email in a compliant way.
A unique index design allows email content to be backed up and removed from the live server to secure/offsite backup facilities. The fulltext index remembers which emails were in which backup files and allows fulltext search even over email removed from the server.
Automated export features allow all email matching specific complex criteria to be exported to directories or zip files for litigation or auditing purposes.
Full-text indexing automatically takes place on archiving. This allows your valuable resource of archived emails to be leveraged for knowledge management, auditing and discovery within your organization.
Live-access allows your end-users to access the archive through a web-interface and retrieve email they may have deleted or lost in their inbox. This simultaneously ensure valuable knowledge is never lost from your organization, can be quickly retrieved, and users reduces user inbox storage requirements.
Redelivery or historical email to selected recipients allows verbatim copies of emails to be retrieved and redelivered in a single click.
Users can run their own audit and generate folders or zip files of vital emails for meetings, storage offsite or presentation to management.
Administrators can restrict access to discovery features to specific users or areas of discovery
If there is a feature you require that we haven't mentioned please email us at and we can advise on whether we have that feature already and, if not, we will happily improve our product to meet your requirement!