The Infoblox Advanced DNS Protection solution delivers integrated defense against DNS DDoS attacks, cache poisoning, malformed queries, tunneling and other DNS security threats
Infoblox has introduced the Infoblox Advanced DNS Protection solution, the first Domain Name System (DNS) appliance with integrated defenses against Distributed Denial of Service (DDoS) attacks, cache poisoning, malformed queries, tunneling and other DNS security threats. By building defense directly into a fortified DNS server, the Infoblox solution can deliver protection that is stronger, more intelligent and more comprehensive than what is possible today with separate external security solutions.
The security features of Infoblox Advanced DNS Protection provide multiple levels of defense, including:
- Unique threat detection and mitigation. Infoblox Advanced DNS Protection intelligently analyzes incoming DNS queries and is able to distinguish between legitimate traffic from real users and malicious traffic generated by a DNS DDoS attack. Armed with this information, the Infoblox appliance then drops the DDoS traffic and only responds to the legitimate queries. This can keep a business online and functioning during a DDoS attack, unlike conventional response rate limiting which slows down all traffic by simply placing a cap on DNS query responses.
- Centralized visibility. Enterprises and service providers can spot anomalous DNS traffic across all Infoblox Advanced DNS Protection appliances on their networks through a single console, allowing for early detection that makes it possible to organize a more effective defense. This is beneficial because DDoS attacks often target multiple DNS servers, start slowly and aren’t detected until they reach a catastrophic level.
- Ongoing protection against evolving threats. An automatic update service regularly sends new rules to the Infoblox Advanced DNS Protection appliance, enabling it to protect against evolving threats as they are identified – much faster than the weeks that can elapse while waiting for traditional security patches and updates.
Infoblox Advanced DNS Protection defends against a wide range of DNS threats, including cache poisoning, which inserts rogue IP addresses into a DNS cache; malformed DNS queries, which can crash a DNS server; and tunneling, which can be used to smuggle out stolen data.
Pricing and Availability
The Infoblox Advanced DNS Protection solution – consisting of the Infoblox Advanced Appliance and the Infoblox Advanced DNS Protection Service – is expected to be available in January 2014. Pricing information is available immediately from Infoblox sales representatives and channel partners.
For more information on this new product, please read the press release.