Beruflich Dokumente
Kultur Dokumente
KEY FEATURES
• Reduce Business Disruptions: Infoblox Advanced Challenge: Service Disruptions
DNS Protection (ADP) continuously monitors,
DNS is foundational to every organization because it provides
detects and stops all types of DNS attacks—
mission-critical network connectivity necessary to run a business.
including volumetric attacks non-volumetric attacks,
such as DNS exploits and DNS hijacking—while
If your external DNS server goes down, your entire network is
responding to legitimate queries. It also maintains shut off from the Internet. DNS disruption interferes with or shuts
DNS integrity, which DNS hijacking attacks can down your critical IT applications, such as email, websites, VoIP
compromise. Infoblox provides a solid foundation and software as a service (SaaS). According to leading security
for security, enabling five nines availability for reports, DNS is the second most targeted service for application-
your network. layer attacks, with 72 percent of enterprises impacted in 2018.
Neustar estimates the cost resulting from a distributed denial of
• Adapt to Evolving Threats: Infoblox ADP uses service (DDoS) attack carried out through DNS to be greater than
Infoblox Threat Adapt™ technology to automatically $220,000 an hour, not including customer defection and damage
update protection against new and evolving threats
to brands. Attackers look for the weakest links in your network.
as they emerge. Threat Adapt applies independent
The DNS protocol is easy to exploit for DDoS or DNS hijacking,
analysis and research to evolving attack techniques,
compromising the integrity of DNS.
including what Infoblox threat specialists have seen
in customer networks, to update protection. It
Infoblox delivers the widest range of protection on the market
automatically adapts protection to reflect DNS
for guarding your vital DNS services from attack, ensuring the
configuration changes.
five nines availability your organization depends on. It provides
• Gain Single-Pane-of-Glass Visibility: With Infoblox, centralized visibility into who is using the network, which
your organization can easily view prior or current devices they are on and details about the attack to ensure a
DNS attacks and improve operational efficiency rapid response.
through our rapid threat remediation. Infoblox
Advanced DNS Protection also provides a single Solution: Safeguard Your Business from
view of attack points across the network and attack
sources, supplying the intelligence necessary
Disruptions Caused by DNS-based Attacks
for threat management. It is integrated with our With Infoblox Advanced DNS Protection (ADP), your business is
DNS solution. always up and running, even under a DNS-based attack. Infoblox
blocks the widest range of attacks, such as volumetric attacks,
• Deploy Flexibly: With Infoblox, you have the option
NXDOMAIN, exploits and DNS hijacking. Unlike approaches that
of deploying as a subscription add-on to virtual
and physical Trinzic appliances or as specialized
rely on infrastructure overprovisioning or simple response-rate
advanced appliances. limiting, Advanced DNS Protection intelligently detects and
mitigates DNS attacks while responding only to legitimate
• Lower Your Costs: Infoblox Software ADP leverages queries by using constantly updated threat intelligence, without
existing hardware , which means customers only the need to deploy security patches. With Infoblox, you can take
need to upgrade software that runs on the hardware network reliability to the next level by ensuring that your critical
resulting in minimal incremental cost for upgrades infrastructure—and your business—keep working at all times.
Solution Components appliances as well as newer Trinzic TE-815/825/1415/1425/
2215/2225/4015/4025 appliances with ADP software
Infoblox Appliances subscription add-on. Virtual appliances are supported
• Advanced PT Appliance: special-purpose appliance that on VMWare and KVM.
has dedicated processing power for Advanced DNS
Protection. The PT Appliance is a fortified DNS server Advanced DNS Protection service: The software plus
with security built in. It leverages dedicated compute Threat Adapt technology provides ongoing protection
resources to filter out attacks before they reach the DNS against existing and new threats to the DNS server.
server or application. This is a DNS appliance only and
does not include DHCP and IPAM.
Floods
DNS Exploits
Reconnaissance
Legitimate
Amplification
Traffic
Advanced Infoblox
DNS Protection Advanced
Rule Server DNS Protection
DNS
Automatic Updates
(Threat Adapt) Data for
Reports
Grid-wide Rule
Distribution
Infoblox
Grid-wide Rule DNS Advanced
Grid Master Distribution DNS Protection
“Service incidents from DDoS attacks have been cut “I’ve been using Infoblox for DNS, DHCP, and IP
in half, and customer complaints about lengthy page address management for four years. It’s a solid
load times have been significantly reduced.” product. We’ve moved resources around because
the product works so well. Our global footprint is
VP of Customer Support, Large Service Provider managed by 1.5 FTE–and that’s 65 devices.”
DNS-based exploits Exploits Attacks that exploit vulnerabilities in the DNS software
DNS cache poisoning Exploits Corruption of the DNS cache data with a rogue address
PT - 1405 TE - 4015/4025
PT - 2205 TE - 2215/2225
PT - 4000 TE - 1415/1425
TE - 2210/2220
TE - 1410/1420
TE - 815/TE 825
Infoblox is leading the way to next-level DDI with its Secure Cloud-Managed Network Services. Infoblox brings next-level security,
reliability and automation to on-premises, cloud and hybrid networks, setting customers on a path to a single pane of glass for
network management. Infoblox is a recognized leader with 50 percent market share comprised of 8,000 customers, including 350
of the Fortune 500.
© 2019 Infoblox, Inc. All rights reserved. Infoblox logo, and other marks appearing herein are property of Infoblox, Inc. All other marks are the property of
their respective owner(s). DS-0200-02 1902