We are happy to announce the availability of Infoblox Trinzic DDI With NIOS 6.8.
This release includes a number of new features:
Access Control Using Named ACLs (Access Control Lists)
To effectively manage your core network services, you can grant legitimate hosts access to specific operations on the appliance using an ACL (access control list) or anonymous ACEs (access control entries). You can now configure a named ACL and apply it to multiple operations, such as file distribution and DNS zone transfers.
Inheritable Extensible Attributes
You can now enable the inheritance of extensible attributes. When you enable the inheritance of an extensible attribute, all descendants in the inheritance chain can inherit the attribute so you do not have to configure it at the object levels. For example, if you define an inheritable extensible attribute for a network, DHCP ranges and fixed addresses in the network can inherit the same attribute and its value. You can also define other options for inheritable extensible attributes. The appliance currently supports the Network View -> Network Container -> Network -> Range -> Host/Fixed Address/Reservation inheritance chain.
Multiple Status Dashboards
In addition to the default dashboard, you can now configure your own status dashboards to which you add widgets that help you manage core network services and data. Configuring multiple dashboards helps organize widgets in a meaningful way and improves dashboard and widget performance. This feature is especially useful when you have a Grid serving a large number of Grid members.
Additional Objects in Infoblox RESTful Web API
In this release, the RESTful Web API has been enhanced to support additional objects. For more information about the new objects, refer to the Infoblox RESTful API Documentation.
Full details on this release are available from the release notes, available for download off of the Infoblox Support Site
Implementing Quality of Service Using DSCP
You can implement DiffServ (Differentiated Services) on the appliance by configuring the DSCP (Differentiated Services Code Point) value. When you configure the DSCP value for DiffServ, the appliance sets priorities for all outgoing IP traffic. It implements QoS (quality of service) rules so you can effectively classify and manage your critical network traffic. To ensure that core network services, such as DNS services, continue to operate in the event of network traffic congestion, you can set the DSCP value for the entire Grid and override it at the member level.
Port Redundancy Support on IB-4030
This release adds port redundancy support for the Infoblox-4030 appliance. You can now configure the LAN2 port to be a redundant port for LAN1 on an Infoblox-4030 appliance to provide fault tolerance in your network. Port redundancy supports both IPv4 and IPv6 transports.
DNS Response Logging
In addition to DNS queries, you can also capture DNS responses in the syslog or export them in a capture file through the Infoblox reporting solution.
NOTE: Enabling DNS query or response logging in the syslog will significantly affect system performance. Ensure that your system has sufficient CPU capacity before you enable this feature. Alternatively, if you have a Reporting license, you can capture DNS query and response information and forward it to an external server. For more information, see the “Infoblox Reporting Solution” chapter in the Infoblox NIOS Administrator Guide.
Support for Recurring Discovery
When you configure a network discovery, you can now define a recurrence pattern that repeats on a regular basis. The appliance automatically starts the recurring discovery based on the configured schedule.
Restrictions on Recursive Deletions of Networks and Zones
You can now restrict recursive deletions of networks and zones to specific groups of users through the Infoblox GUI. Users who can perform recursive deletions are presented with the options of deleting a parent object only or deleting the parent object and all its child objects, when they delete a network container or DNS zone.
Notice and Consent Banner
You can now configure and publish a notice and consent banner as the first login screen that includes specific terms and conditions you want end users to accept before they log in to the Infoblox Grid. When you enable the notice and consent banner, users must accept the terms and conditions displayed on the consent screen before accessing the login screen of Grid Manager.NIOS 6.8.0 Release Notes
DNS Firewall Enhancements
This release supports the following Infoblox DNS firewall enhancements:
- Enhances DNS firewall to function in a multi-tiered recursion architecture.
- Improves reporting by reducing the indexing interval for RPZ events.
- Removes the ability to enable implicit pass-through logging.
- Improves syslog filtering to display RPZ events in the syslog.
10 Gigabit Ethernet Card Support on Infoblox Appliances
This release adds support for an optional 10 gigabit Ethernet card on the following Infoblox appliances: Trinzic 1410, Trinzic 1420, Trinzic 2210, Trinzic 2220, Infoblox-4010, Trinzic Reporting 1400, 2200, and 4000 appliances. Infoblox offers this factory-installed card option that accepts SFP+ modules for either 10 gigabit RJ-45 copper or 10 gigabit optical interfaces. For more information about this option, contact your Infoblox representatives.
CHANGES TO DEFAULT BEHAVIOR
In this release, DNS responses and DNS queries are stored in the same file. To reflect this implementation, the file name reporting-query-[nnnnnn] has been changed to capture-dns-[nnnnnn], where [nnnnnn] represents the timestamp when the file is created. The file continues to reside in the /storage/reporting-capture-date/ folder. To avoid backward compatibility issues, ensure that you update your scripts to handle both file naming conventions.