I assume you are referring to the Advanced Malware Protection (AMP)? If so, "When enabled, all HTTP traffic will be analyzed for malware. Files determined to be malicious will automatically be blocked before they reach the client. For a description of file types that will be evaluated, visit our Security Filtering Documentation Page" So basically it just protects/stops the malware. It doesn't isolate or, in any way, contain the entire clients traffic. Only the malware identified traffic that the client is trying to participate in.
... View more