Okay, if I understand this correctly: hybrid mode submits my messages to scanning in the cloud for inbound messages, then evaluates them against the policies on my device, while outbound are only scanned on the device. Which, if that is the case, I DO NOT want. So I'll have to see about removing hybrid mode or starting over and not selecting it, since that feature set is not what I want for our solution.
When you set up hybrid mode, you need to point your MX record to the McAfee SaaS cloud. The integration part on MEG is the bit that tells the cloud which MEG appliances are working for the specific domain (sets up the trust). Mail from the outside goes directly (via the MX) to the cloud rather than being sent there by your local MEG appliances.
So, no, it is not like Trusted Source at all. The actual messages are processed in the cloud prior to reaching your MEGs. The main advantage is the added scalabilty provided by the cloud service.
If all you want is to setup DR, hybrid is optional, and from your previous post it sounds like you don't want do use hybrid as it is.
Hope this helps.
The only reason we selected to engage hybrid mode was to replicate a service we had with Google Postini whereby mail would still be "delivered" to the cloud and queued if there were network issues. Right now we are forced to send mail through the cloud as well because our public IPs NAT'd to our mail hosts was somehow blacklisted; we are working to get that corrected.
Now back to hybrid mode; we despise it. A few reasons why:
- We have had problems with spam getting to our end users even though the cloud scores it high but is still delivered to our mail servers
- You have no control over what the cloud does. This is especially bothersome if you need to ensure TLS between you and another entity. Must engage SaaS support to have them do that for you.
- We ahve gotten bounced around McAfee support for problems; MEG team says it's SaaS, SaaS team refers us to MEG team, you get the picture
So it's basically been a nightmare for us. Wish we could turn it off but the bosses are too concerned about network outage and email not getting in. The way I see it (and I've reiterated this in public forums at work) if you have a network outage, getting email working again during such time should be the least of your worries.