Analyze your email metrics to look for anomalous behaviors that are related to the incoming emails to your instance. For example, if the metrics indicate a spike in spam emails from specific domains, you can define inbound actions that prevent their delivery to the instance.

For each email metric, a count appears for each type of email that is delivered or sent to the instance during the calendar day.

After you click an email metric, you can learn about the possible email security issues in your instance by clicking one of the following:
Command Description
Chart Incoming email counts and count trends over time for the selected email type (spam, incoming external, untrusted, or trusted).
Records Individual email records that compromise the daily count for the selected email type.
More Info Additional information for the selected email type.
Note: The email metrics apply only to your incoming emails to the instance. The metrics do not apply to the normal traffic that is processed through your enterprise-wide email servers. To learn about defining inbound actions and how they impact the processing of your inbound emails, see Inbound email actions.