Capture Advanced Threat Protection
Capture Advanced Threat Protection (Capture ATP) is a cloud-based feature that analyzes files and determines if the file is malicious or acceptable. Capture ATP inspects files of up to 10MB, and is able to block threats before they can do any damage. All files submitted to Capture ATP are preprocessed before analysis, and separated in three categories. Malicious files are quarantined, while acceptable files are delivered directly to the client. If preprocessing determines a file to be malicious or acceptable, the file is not further analyzed by Capture ATP. Only the third category, those whose status cannot be immediately determined, are submitted to Capture ATP for complete analysis. Until this complete analysis is performed, Capture ATP works on the basis of Block Until Verdict if this option is selected. With Block Until Verdict, no files are delivered to the client before they pass rigorous analysis and are determined to be acceptable.
A streamlining feature called MD5 Hash Exclusion lists allows you to upload an MD5 hash and compare it with the SonicWall database of specified hash exclusions. This can speed up the analysis of files that are similar or the same as files that have recently been received for analysis.
Capture ATP supports many configurations of file types (archive files, executable files, Microsoft Office, or PDF files). In order to expedite the process, the user has the possibility of excluding certain known files from file inspection, and either allow them or block them automatically.
Wireless Network Manager supports the HTTP and SMTP protocols.
For more information about Capture ATP, see the latest SonicOS/X Security Configuration administration documentation available under the product name Secure Wireless Access on the SonicWall support website at: https://www.sonicwall.com/support/technical-documentation.
Was This Article Helpful?
Help us to improve our support portal