Documentation | Support

Go to the table of contents Go to the previous page Go to the next page View or print as PDF
Managing Messages > URL Sandbox
URL Sandbox
Administrator Help | Forcepoint Email Security | Version 8.5.x
The URL sandbox function provides real-time analysis of uncategorized URLs that are embedded in inbound email. When a user clicks an uncategorized URL, a notification message prompts the user to initiate URL analysis, because the link may not be safe. If the user chooses not to analyze the URL, the requested web page is not accessible.
If analysis determines that the link is not malicious, the user receives a notification that lists the URL and category or categories of the page, and clicks Continue to site.
If the link is deemed malicious or if applicable policy does not allow a user to access uncategorized web pages, the user is notified that the site is blocked:
The user may also be notified in the following cases:
*
If the function cannot access the requested page due to an inaccessible server or because the link is incorrect.
*
If the protocol is not supported. Supported protocols are HTTP, HTTPS, and FTP. If you have selected the option Allow the recipient to follow links with an unsupported protocol, the user can proceed to view the page if desired; otherwise, the user cannot access the page.
Your subscription must include the Forcepoint Email Security Hybrid Module. URL sandbox capability is available only after the email hybrid service is successfully registered and enabled. See Email hybrid service configuration.
The URL sandbox configuration settings include three components:
*
Default settings that apply to any recipient not covered by specific settings
*
Recipient-specific settings that apply to an individual domain or email address
*
List of domains to which sandbox settings do not apply
Use the page Settings > Inbound/Outbound > URL Sandbox to configure the URL sandbox feature:
1.
In the section Default Settings, specify the settings that apply to any recipient not covered by recipient-specific settings:
a.
Activate the URL sandbox function; mark the check box Analyze suspicious URLs.
By default, the check box is not marked.
b.
If the URL sandbox is enabled, allow users to click unclassified URL links; mark the check box Allow the recipient to follow links to unclassified URLs.
By default, the check box is not marked.
c.
Allow users to click a link that may redirect to a site with an unsupported protocol; mark the check box Allow the recipient to follow links with an unsupported protocol.
d.
Replace the original URL with other text; enter the string in the entry field below the check box.
Leave this field blank to keep the original URL.
2.
Use the section Recipient-specific Settings to add custom sandbox settings for individual domain or email addresses:
a.
Create sandbox settings for a particular group of addresses; click Add.
b.
In the Recipient Email/Domain Address List, enter comma-separated email or domain addresses to which the settings should apply.
Wildcards are not permitted.
c.
Activate the URL sandbox function for these addresses; mark the check box Analyze suspicious URLs.
By default, the check box is not marked.
d.
If the URL sandbox is enabled, allow the specified users to click unclassified URL links; mark the check box Allow the recipient to follow links to unclassified URLs.
By default, the check box is not marked.
e.
Allow users to click a link that may redirect to a site with an unsupported protocol; mark the check box Allow the recipient to follow links with an unsupported protocol.
f.
Replace the original URL with other text; enter the string in the entry field below the check box.
Leave this field blank to keep the original URL.
3.
Enable the sandbox to examine URLs even if they appear in a message that contains the digital signature of a trusted sender; at the bottom of the section URL Sandbox, mark the check box Analyze suspicious URLs that appear in digitally signed email.
By default, the check box is not marked.
4.
In the entry field above the check box, enter the URL domains that should bypass the URL sandbox.
Do not use wildcards, and separate multiple entries with a comma.
5.
Click OK.
The settings are saved.
To delete a set of recipient-specific settings, mark the check box next to the address list and click Delete.

Go to the table of contents Go to the previous page Go to the next page View or print as PDF
Managing Messages > URL Sandbox
Copyright 2022 Forcepoint. All rights reserved.