I am using CAS-S400 with on-Box sandboxing solution using IntelliVM with Windows 10 as profile.
2. Since the CAS-S400 is deployed in Intranet with no Internet connectivity of any sort, the configuration of dirty-line is set as "Same as backend" with Isolated firewall. However, Symantec does not recommend this as the malware analysis will not be complete in this case.
3. Therefore, is there any script or solution like FakeNET or InetSim that emulates the Internet envrionment, so that in case where security policy of any organisation does not permit any internet connections of any kind, such solution or script can be installed in CASMA for complete malware analysis and visibility.