Advanced threat protection analyzes incoming and outgoing network traffic (for example, DNS requests, HTTP requests, and IP packets) for threats.
ATP allows you to detect compromised clients in your network and raise an alert or drop the traffic from those clients.
- Go to Advanced threat > Advanced threat protection > Enable advanced threat protection.
- Verify that Enable advanced threat protection` is set to ON.
- Set the policy to Log and drop. Remove unnecessary exemption from network and threat exceptions.