- Products
- Network Security
Next Generation FirewallNext-generation firewall for SMB, Enterprise, and Government
Security ServicesComprehensive security for your network security solution
Network Security ManagerModern Security Management for today’s security landscape
- Advanced Threat Protection
Capture ATPMulti-engine advanced threat detection
Capture Security applianceAdvanced Threat Protection for modern threat landscape
- Access Security
Cloud Edge Secure AccessDeploy Zero-Trust Security in minutes
Secure Mobile AccessRemote, best-in-class, secure access
Wireless Access PointsEasy to manage, fast and secure Wi-FI
SwitchesHigh-speed network switching for business connectivity
- Email Security
Email SecurityProtect against today’s advanced email threats
- Cloud Security
Cloud App SecurityVisibility and security for Cloud Apps
Cloud Firewall (NSv)Next-generation firewall capabilities in the cloud
- Endpoint Security
Capture ClientStop advanced threats and rollback the damage caused by malware
Content Filtering ClientControl access to unwanted and unsecure web content
- Product Widgets
- Product Menu Right Image
-
- Network Security
- Solutions
- Solutions Widgets
- Solutions Image Widgets
-
- Solutions Widgets
- Partners
- Partner Widgets
- Partners Image Widgets
-
- Partner Widgets
- Support
- Support Widget
- Support Image Widgets
-
- Support Widget
- Products
- Network Security
- Next Generation FirewallNext-generation firewall for SMB, Enterprise, and Government
- Security ServicesComprehensive security for your network security solution
- Network Security ManagerModern Security Management for today’s security landscape
- Advanced Threat Protection
- Capture ATPMulti-engine advanced threat detection
- Capture Security applianceAdvanced Threat Protection for modern threat landscape
- Access Security
- Cloud Edge Secure AccessDeploy Zero-Trust Security in minutes
- Secure Mobile AccessRemote, best-in-class, secure access
- Wireless Access PointsEasy to manage, fast and secure Wi-FI
- SwitchesHigh-speed network switching for business connectivity
- Email Security
- Email SecurityProtect against today’s advanced email threats
- Cloud Security
- Cloud App SecurityVisibility and security for Cloud Apps
- Cloud Firewall (NSv)Next-generation firewall capabilities in the cloud
- Endpoint Security
- Capture ClientStop advanced threats and rollback the damage caused by malware
- Content Filtering ClientControl access to unwanted and unsecure web content
- Product Widgets
- Product Menu Right Image
-
- Network Security
- Solutions
- Solutions Widgets
- Solutions Image Widgets
-
- Solutions Widgets
- Partners
- Partner Widgets
- Partners Image Widgets
-
- Partner Widgets
- Support
- Support Widget
- Support Image Widgets
-
- Support Widget
What is Time of Click URL protection?
03/26/2020 
13 People found this article helpful
92,617 Views
Description
Available in firmware 10.0.x and newer, Time of Click URL protection rewrites unknown URLs found in the subject and body of inbound and outbound email messages. It detects malicious URLs in real-time when the user clicks on the URL. This is an incremental URL protection feature added to the previously available Advanced URL Protection feature that detected malicious URLs during the email delivery at the gateway. This feature is activated by default for customers having a Capture ATP license.
Resolution
To use this feature:
- Navigate to MANAGE | Security Services | Time of Click.
- Under Basic Setup Checklist, there are two choices:
- To enable the feature for inbound messages, click the circle next to URL rewriting for inbound email is disabled.
- To enable the feature for outbound messages, click the circle next to URL rewriting for outbound email is disabled.
- Once the URL has been rewritten and the capture service has determined that it is a threat and should not go further, a default block page pops up and prevents the user from continuing.
- To customize the Block Page text, under Configure Block Page, check the box next to "The block page should not allow the email recipient to proceed to the original URL" and, in the text box, type the optional text to be displayed at the bottom of the blocked page.
- Click Submit.
- Under Exception Management specify the email addresses of people (senders) and companies (sender domains) that do not need to be rewritten.
- Click on the Inbound or Outbound tabs and then click on Add Exception to type in the popup text box the email addresses and URL domains that do not need to be rewritten.
- The following types of addresses and URL domains can be specified:
- Sender email address
- Recipient email address
- Sender email domain
- URL
- URL Domain
- IP Address
- Click Add when done or Cancel to cancel your selection.
| SonicWall Capture ATP – URL Analysis
User clicks rewritten URL:
Based on judgement, the user is either directed to the clean URL or receives a block page for a malicious/phishing URL with an option to proceed at their own risk. |
|
Related Articles
- SonicWall HES IP address blocklisted by UCEProtect or Backscatter
- How to add O365 connector for domain specific routing
- SonicWall Email Security on Hyper-V Platform
Categories
- Email Security > Email Security Software
- Email Security > Email Security Appliance
- Email Security > Email Security Virtual
- Email Security > Hosted Email Security
YES
NO