cloudflare · Maddy-Cloudflare · Nov 5, 2025 · Nov 5, 2025 · Nov 5, 2025 · Nov 5, 2025
@@ -2314,6 +2314,8 @@
 /cloudflare-one/email-security/reference/domain-information/ /cloudflare-one/email-security/settings/domain-management/domain/ 301
 /cloudflare-one/email-security/settings/configure-text-add-ons/ /cloudflare-one/email-security/settings/detection-settings/configure-text-add-ons/ 301
 /cloudflare-one/email-security/settings/trusted-domains/ /cloudflare-one/email-security/settings/detection-settings/trusted-domains/ 301
+/cloudflare-one/email-security/monitoring/search-email/ /cloudflare-one/email-security/investigation/search-email/ 301
+/cloudflare-one/email-security/settings/invalid-submissions/ /cloudflare-one/email-security/reclassifications/invalid-submissions/ 301
 
 # ============================================================================
 # DYNAMIC REDIRECTS

@@ -10,7 +10,7 @@ You can now investigate links in emails with Cloudflare Security Center to gener
 
 From **Investigation**, go to **View details**, and look for the **Links identified** section. Select **Open in Security Center** next to each link. **Open in Security Center** allows your team to quickly generate a detailed report about the link with no risk to the analyst or your environment.
 
-For more details, refer to [Open links](/cloudflare-one/email-security/monitoring/search-email/#open-links).
+For more details, refer to [Open links](/cloudflare-one/email-security/investigation/search-email/#open-links).
 
 This feature is available across these Email security packages:
 

@@ -8,7 +8,7 @@ You can now safely open links in emails to view and investigate them.
 
 ![Open links with Browser Isolation](~/assets/images/changelog/email-security/investigate-links.jpg)
 
-From **Investigation**, go to **View details**, and look for the **Links identified** section. Next to each link, the Cloudflare dashboard will display an **Open in Browser Isolation** icon which allows your team to safely open the link in a clientless, isolated browser with no risk to the analyst or your environment. Refer to [Open links](/cloudflare-one/email-security/monitoring/search-email/#open-links) to learn more about this feature.
+From **Investigation**, go to **View details**, and look for the **Links identified** section. Next to each link, the Cloudflare dashboard will display an **Open in Browser Isolation** icon which allows your team to safely open the link in a clientless, isolated browser with no risk to the analyst or your environment. Refer to [Open links](/cloudflare-one/email-security/investigation/search-email/#open-links) to learn more about this feature.
 
 To use this feature, you must:
 

@@ -16,7 +16,7 @@ To ensure all customer feedback is actionable, we have launched two new features
 
 ![EmailSec-Invalid-Submissions-Dashboard](~/assets/images/changelog/email-security/EmailSec-Invalid-Submissions-Dashboard.png)
 
-Learn more about this feature on [invalid submissions](https://developers.cloudflare.com/cloudflare-one/email-security/monitoring/search-email/#invalid-submissions).
+Learn more about this feature on [invalid submissions](/cloudflare-one/email-security/reclassifications/invalid-submissions/).
 
 This feature is available across these Email security packages:
 

@@ -72,47 +72,6 @@ To modify your screening criteria, under **Active screen criteria**, select **Mo
 
 To reset your screening criteria, select **Reset**.
 
-## Reclassify messages
-
-Reclassifying messages allows you to choose the disposition of your messages if the disposition is incorrect.
-
-To reclassify a message:
-
-1. In [Cloudflare One](https://one.dash.cloudflare.com/), go to **Email security** and select **Investigation**.
-2. On the Investigation page, under **Your matching messages**, select the message you want to reclassify.
-3. Select the three dots, then select **Request reclassification**.
-4. Under **New disposition**, select among the following:
-   - **Malicious**: Traffic invoked multiple phishing verdict triggers, met thresholds for bad behavior, and is associated with active campaigns.
-   - **Spoof**: Traffic associated with phishing campaigns that is either non-compliant with your email authentication policies (SPF, DKIM, DMARC) or has mismatching Envelope From and Header From values.
-   - **Spam**: Traffic associated with non-malicious, commercial campaigns.
-   - **Bulk**: Traffic associated with [Graymail](https://en.wikipedia.org/wiki/Graymail_%28email%29), that falls in between the definitions of SPAM and SUSPICIOUS. For example, a marketing email that intentionally obscures its unsubscribe link.
-   - **Clean**: Traffic not associated with any phishing campaigns.
-5. Select **Save**.
-
-To reclassify messages in bulk, select **Select all messages** > **Action** > **Request reclassification**.
-
-To release messages in bulk, select **Select all messages** > **Action** > **Release**.
-
-### Upload EML files
-
-Email security classifies certain emails as "Clean". If you disagree with the disposition, you can upload an EML file and reclassify the email.
-
-On the **Investigation** page:
-
-1. Go to the email marked as Clean.
-2. Select the three dots > **Request reclassification**.
-3. Upload the EML file.
-4. Select a new disposition.
-5. Select **Save**.
-
-Once you have reclassified your messages, you can access those on Reclassifications.
-
-To view reclassifications:
-
-1. Log in to [Cloudflare One](https://one.dash.cloudflare.com/).
-2. Select **Email security** > **Reclassifications**.
-3. Choose **Team submissions** to view emails your security team submitted for reclassification, or **User submissions** to view emails your users submitted for reclassification.
-
 ## Move messages
 
 Moving messages allows you to move messages to a specific folder. You can move up to 1,000 messages at a time.