Absolutely!
There are various ways to accomplish this, depending on what products you have installed/planned.
Easiest method would be to leverage the SMG's interface to the CAS/MA (may have been renamed to "Threat Defense" or some such), which provides scanning for malware as well as file and URL reputation. This avoids fooling around with internal routing/re-routing the email from device to device, etc.
Top of the line deployement would be to have SMG interfacing to DLP as well as CAS/MA:
The SMG can accept the email, perform the spam scanning, circle it through the DLP (for compliance and local policies, etc,) and circle it over to CAS/MA to perform the malware, file reputation, and URL reputation. The SMG would still be the one to relay the mail to the next hop (internal or external) so you get all that extra filtering without having to make any changes to your MX records, etc, etc.
If your other scanning software has an SMTP interface, then you could configure the SMG to route the mail to that device, let it do it's thing and then relay the email as appropriate.
Original Message:
Sent: 01-20-2021 04:49 PM
From: Swango
Subject: Segregate functionality
Hello,
I don't have access to SMG console, but technically, is that possible to perform anti-spam on one device and then forward the traffic to other which will perform anti-malware and related?
Thank you.