This article applies to:
- Trustwave MailMarshal (SEG)
Question:
- What is Rule Profiling?
- How can Rule Profile results be viewed?
Information:
Rule Profiling is an advanced feature of MailMarshal that can be used to tune the Engine and standard rules.
Rule Profiling records the average run time of a rule and the number of times it is run on the specific processing server.
The profile data is reset when rules are reloaded or the Engine service is restarted.
The profile data can be queried using the MMlookup.exe application (installed with the product) and can also be saved to a file in .csv format.
To query the profile data with MMlookup:
- On a MailMarshal processing server, run MMLookup from the command line.
- At the prompt mmlookup> enter one of the following commands:
- ?profile
Lists the profile map - ?profile clear
Resets the map - ?profile filename.csv
Saves the data to a file that can be manipulated by excel.
For instance, ?profile c:\temp\profile.csv
- The output returns a line for each rule that has been used since the last profile clear on this server. Each line shows:
Rule name, Rule has triggered (True/False), average run time, number of times run
Notes:
The profiler can be disabled (for all servers in an array) by setting the following registry item:
- On the Array Manager, edit the Registry (10.X: use Advanced Settings in the Management Console)
- Navigate to the SEG Engine key:
- In version 8.X: HKEY_LOCAL_MACHINE\SOFTWARE\Trustwave\Secure Email Gateway\Default\Engine
- 10.X: value names have the prefix Engine. (Engine dot).
- For full details of the location for each product version, see article Q10832.
- Value: EnableRuleProfiler DWORD
- Data: 0 to disable (any other data or no value to enable; enabled by default)
- After changing the Registry entry, commit configuration to apply the change.
Warning: As always take due care when editing the Registry.
