Infoblox DNS Firewall
Malware has become increasingly sophisticated and is circumventing traditional defenses. According to a recent security study, over 91% percent malware uses DNS to gain command and control, to exfiltrate data and to redirect traffic. Traditional protection methods do not intercept DNS communications to malicious locations, so a DNS security layer is required.
Infoblox DNS Firewall is the leading DNS-based network security solution which contains and controls malware that uses DNS to communicate with C&Cs and botnets. DNS Firewall works by employing DNS Response Policy Zones (RPZs), automated threat intelligence, and the optional Infoblox Threat Insight to prevent data exfiltration. Also—collaborating with Infoblox DHCP for device fingerprinting, with Infoblox Identity Mapping for capturing the user name tied to an infected device, and with Infoblox IP address management—DNS Firewall provides valuable information to help pinpoint infected devices for remediation.
Furthermore, Infoblox is the industry’s first and only DDI vendor to seamlessly integrate DNS Firewall with leading security solutions such as FireEye and Carbon Black and exchange valuable security event information with NAC solutions such as Cisco Identity Services Engine (ISE) to automate security response and quarantine infected endpoints.
|Packaging||Hardware ApplianceSoftware Application|