Sonicwall Capture ATP available

epoch70 · 2016-11-03T12:17:15.000Z

Sonicwall Capture Advanced Threat Protection Service is out of beta and generally available. Has anyone tried it yet in production? What are your experiences? Any false positives or other teething pains with it?

jcLAMBERT · 2016-11-03T15:21:38.000Z

I have not tested it, but it is on my list

donmatlock4658 · 2017-05-15T17:39:10.000Z

Any updates on this, was looking at activating it, would like to know if there is any negatives to look out for.

chadpence3667 · 2017-05-25T12:08:39.000Z

We have been using it for over a month now. There are some mission critical sites that I have had to exclude but other than that it works pretty good. Scanned around 3000 files and blocked 4 from coming in. So I like it. We have it setup to block file and then let it pass to the end user. The have to download some items twice but I would rather be safe than sorry. You can let items pass and then scan but I really don’t see the point in that.

gregkatz9013 · 2017-08-24T09:44:06.000Z

Hasn’t worked since we subscribed. I’ve had an open case for weeks.

markperlstein · 2017-11-16T03:29:56.000Z

Greg

Am thinking of installing this on some client’s routers. Has your case been resolved? Are you still using it?

Thanks

Mark

gregkatz9013 · 2017-11-16T10:02:50.000Z

Yes, it’s resolved. When I got both my new firewalls I made the backup unit the primary by mistake and the licensing got messed up. Once that got take care of its been working well, no complaints.

art76 · 2018-01-31T03:21:58.000Z

We have had it for a few months now at our head office location, and going through upgrades to branch locations to have it there too.

We have it set to scan and unblock, meaning sometimes users need to download again to get a file but as others have said, this is a small drawback for being safer.

Also, needed to add some exclusions for an app we have to allow customers to get some details in PDF as it was affecting that too but customers weren’t ready to download a 2nd time.

The speed seemed slow initially when we first had it, but maybe Sonicwall has beefed up their scanning infrastructure as seems almost seamless now.

Only annoyance has been having to upgrade some NSA250’s that didn’t come out that long ago and are EOL already.

michaelmosso · 2018-05-10T13:52:10.000Z

Just turned on Capture ATP in my Sonicwall , seems to work pretty well already got one block out of 3,000 files scanned .

Question Is there a way to create a white list of external “trusted” sites ?

gregkatz9013 · 2018-06-08T18:16:30.000Z

Yes you can setup a address group and link it to the ATP settings