URL defence functions each time a link is clicked by a user. This function FAQ is for embedded URL’s that have already passed through Sentinel Messaging as safe links. The destination server may have changed threat/reputation since delivery to the time of the user clicking the URL.
User is redirected to the URL defence service where the URL and website is analysed and checked against the global threat intelligence networks database.
The URL is considered bad: The user will be shown a page informing them “The website has Been Blocked!”.
The URL is considered good: The user will be re-directed to the website.
The URL is unknown: It will be executed using sandboxing to find if the link has anything malicious.