LUCY

User Tools

Site Tools

Trace:
filters

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revisionPrevious revision
Next revision		Previous revision
filters [2020/06/25 18:06] lucyfilters [2021/09/15 12:38] (current) lucy
Line 9: Line 9:
  
   - **Allow all** (default) - allows all recipients to access the campaign, regardless of their IP address and browser.   - **Allow all** (default) - allows all recipients to access the campaign, regardless of their IP address and browser.
-  - **Allow only** - allows only recipients that have an IP address or browser that match one of the rules you add below, all other recipients will be blocked. +  - **Allow only** - allows only recipients that have an IP address or browser that matches one of the rules you add below, all other recipients will be blocked. 
-  - **Deny for** - denies the access for recipients that have an IP address or browser that match one of the rules you add below, all others will be allowed.+  - **Deny for** - denies the access for recipients that have an IP address or browser that matches one of the rules you add below, all others will be allowed.
  
 {{ filters_policies.png?600 }} {{ filters_policies.png?600 }}
 {{ filters_add.png?600 }} {{ filters_add.png?600 }}
  
-In order to set the rule, choose the desired policy and click **Add**, then choose the filter criteria (IP or User-agent) and click **Save** after.+In order to set the rule, choose the desired policyand click **Add**, then choose the filter criteria (IP or User-agent) and click **Save** after.
  
  
-{{ filters_criteria.png?600 }}+{{ filters_criteria_correct.png?600 }} 
 + 
 +**Preventing false clicks by Office 365 Advanced Threat Protection service** 
 + 
 +In case there are strict policies within the network one is able to use filters in order to provide clear statistics gathering. For example, ATP policies for Office365 track user's clicks on phishing links and rewrite suspicious URLs. Thus, the first request to Lucy server is made by Microsoft services, and this request counts as the one made by the victim. As a result, unreliable statistics are gathered.  
 + 
 +In order to avoid such an issue, one might use filters feature and deny access for certain IP-addresses that belong to Microsoft protection services. IP-ranges for O365 ATP service are: **40.94.0.0/16** and **104.47.0.0/16** 
 + 
 +{{ filters_atp.png?600 }} 
 + 
 +Please note that the IP-ranges may vary from client to client and those from above are known by the LUCY team. In case aforementioned policies do not work, one will have to track which IP-addresses requests are made from. Otherwise, contact the support in order to receive help. 
filters.1593101198.txt.gz · Last modified: 2020/06/25 18:06 by lucy