Infoblox upgrade thwarts DNS attacks

Upgrades designed to better protect DNS servers from cache poisoning and other attacks.

Infoblox Monday announced upgrades across its line of core network services appliances that are designed to better protect DNS servers from cache poisoning and other malicious attacks.

The IP address management vendor upgraded its NIOS operating system with security features that monitor DNS protocol traffic to alert IT managers when an attack is in progress and provide methods to automatically mitigate an attack. To combat the recent vulnerabilities revealed about DNS, Infoblox NIOS Version 4.3r2 includes a DNS firewall feature that Infoblox says will protect servers from potentially malicious activities. NIOS runs on hardware appliances ranging in size and capacity, depending on the environment.

With this release, enterprise network managers can reconfigure internal servers to send recursive queries to the appliances equipped with the DNS firewall capability, which will protect internal systems without causing a reduction in DNS services. Infoblox appliances sit in a data center in front of DNS and DHCP servers in a high-availability pair. The appliances are part of the company's grid technology, which enables enterprise network managers to perform one-to-many upgrades across multiple appliances.

"Despite the patches that have been released to protect against recent DNS vulnerabilities, those are short-term fixes. Recursive queries are the subject of attacks and you simply can't not have them and it is a challenge to keep up with patching multiple systems," says Brett Eldridge, vice president of product management at Infoblox. "By reconfiguring the servers to send those queries to protected appliances, the scope of where someone can attack you is reduced."

The company, which competes with the likes of BlueCat Networks, BT Diamond and MetaInfo, also added a feature that monitors signs, or fingerprints, of the attack. (Compare IP address management products.) With this information, enterprise network managers can more quickly identify similar attacks in the future and take steps, such as limiting traffic to the IP address under attack, to mitigate the risk.

"You can't sit and watch your DNS servers all the time, but with this fingerprint feature, there is earlier indication that you are under attack and measures can be taken," Eldridge says. "These features make it easier to understand when you might be under attack."

NIOS Version 4.3r2 is available across five appliance platforms. Pricing starts at about US$2,500 for the lower-end appliances. The operating system software upgrade is available free of charge to current customers with valid maintenance contracts.

Join the newsletter!

Error: Please check your email address.
Rocket to Success - Your 10 Tips for Smarter ERP System Selection

Tags network securityNetwork managementDNSinfoblox

Keep up with the latest tech news, reviews and previews by subscribing to the Good Gear Guide newsletter.

Denise Dubie

Network World
Show Comments

Cool Tech

SanDisk MicroSDXC™ for Nintendo® Switch™

Learn more >

Breitling Superocean Heritage Chronographe 44

Learn more >

Toys for Boys

Family Friendly

Panasonic 4K UHD Blu-Ray Player and Full HD Recorder with Netflix - UBT1GL-K

Learn more >

Stocking Stuffer

Razer DeathAdder Expert Ergonomic Gaming Mouse

Learn more >

Christmas Gift Guide

Click for more ›

Most Popular Reviews

Latest Articles

Resources

PCW Evaluation Team

Edwina Hargreaves

WD My Cloud Home

I would recommend this device for families and small businesses who want one safe place to store all their important digital content and a way to easily share it with friends, family, business partners, or customers.

Walid Mikhael

Brother QL-820NWB Professional Label Printer

It’s easy to set up, it’s compact and quiet when printing and to top if off, the print quality is excellent. This is hands down the best printer I’ve used for printing labels.

Ben Ramsden

Sharp PN-40TC1 Huddle Board

Brainstorming, innovation, problem solving, and negotiation have all become much more productive and valuable if people can easily collaborate in real time with minimal friction.

Sarah Ieroianni

Brother QL-820NWB Professional Label Printer

The print quality also does not disappoint, it’s clear, bold, doesn’t smudge and the text is perfectly sized.

Ratchada Dunn

Sharp PN-40TC1 Huddle Board

The Huddle Board’s built in program; Sharp Touch Viewing software allows us to easily manipulate and edit our documents (jpegs and PDFs) all at the same time on the dashboard.

George Khoury

Sharp PN-40TC1 Huddle Board

The biggest perks for me would be that it comes with easy to use and comprehensive programs that make the collaboration process a whole lot more intuitive and organic

Featured Content

Product Launch Showcase

Latest Jobs

Don’t have an account? Sign up here

Don't have an account? Sign up now

Forgot password?