Showing results for 
Show  only  | Search instead for 
Did you mean: 

Create an ALERT for public email domains

Hello all,

I am new to SIEM and I require assistance for the same.

I need to configure alerts for any emails going to public email domains like,,

This email can be in either To, CC or BCC fields.

We have integrated McAfee Host DLP with the McAfee SIEM.

Any guidance is appreciated.



3 Replies

Re: Create an ALERT for public email domains

Or can I create an alert that says if the To or CC or BCC address's are anything other than my company domain "*" can I generate an alert???


Re: Create an ALERT for public email domains

Hello ram,

According to your queries,i does'nt think mcafee hdlp work like that,HDLP work on TAG basis not domain.

SIEM is a event/incident monitoring tool it doesn't create events by itself.



Re: Create an ALERT for public email domains

Hello David,

Yes SIEM is an incident management tool.

I have integrated with McAfee ePO which has Host DLP.

The DLP is creating Incidences for email policy violation.

Those Incidences are pulled by the McAfee ESM (SIEM)

Now all I want to do is create a rule where in if the email sent to field (to, cc, bcc) is not my company domain

I trigger an alert.

Do let me know how this can be achieved via McAfee ESM (SIEM)

Thank you.

You Deserve an Award
Don't forget, when your helpful posts earn a kudos or get accepted as a solution you can unlock perks and badges. Those aren't the only badges, either. How many can you collect? Click here to learn more.

Community Help Hub

    New to the forums or need help finding your way around the forums? There's a whole hub of community resources to help you.

  • Find Forum FAQs
  • Learn How to Earn Badges
  • Ask for Help
Go to Community Help

Join the Community

    Thousands of customers use the McAfee Community for peer-to-peer and expert product support. Enjoy these benefits with a free membership:

  • Get helpful solutions from McAfee experts.
  • Stay connected to product conversations that matter to you.
  • Participate in product groups led by McAfee employees.
Join the Community
Join the Community