Infoblox upgrade thwarts DNS attacks

Upgrades designed to better protect DNS servers from cache poisoning and other attacks.

Infoblox Monday announced upgrades across its line of core network services appliances that are designed to better protect DNS servers from cache poisoning and other malicious attacks.

The IP address management vendor upgraded its NIOS operating system with security features that monitor DNS protocol traffic to alert IT managers when an attack is in progress and provide methods to automatically mitigate an attack. To combat the recent vulnerabilities revealed about DNS, Infoblox NIOS Version 4.3r2 includes a DNS firewall feature that Infoblox says will protect servers from potentially malicious activities. NIOS runs on hardware appliances ranging in size and capacity, depending on the environment.

With this release, enterprise network managers can reconfigure internal servers to send recursive queries to the appliances equipped with the DNS firewall capability, which will protect internal systems without causing a reduction in DNS services. Infoblox appliances sit in a data center in front of DNS and DHCP servers in a high-availability pair. The appliances are part of the company's grid technology, which enables enterprise network managers to perform one-to-many upgrades across multiple appliances.

"Despite the patches that have been released to protect against recent DNS vulnerabilities, those are short-term fixes. Recursive queries are the subject of attacks and you simply can't not have them and it is a challenge to keep up with patching multiple systems," says Brett Eldridge, vice president of product management at Infoblox. "By reconfiguring the servers to send those queries to protected appliances, the scope of where someone can attack you is reduced."

The company, which competes with the likes of BlueCat Networks, BT Diamond and MetaInfo, also added a feature that monitors signs, or fingerprints, of the attack. (Compare IP address management products.) With this information, enterprise network managers can more quickly identify similar attacks in the future and take steps, such as limiting traffic to the IP address under attack, to mitigate the risk.

"You can't sit and watch your DNS servers all the time, but with this fingerprint feature, there is earlier indication that you are under attack and measures can be taken," Eldridge says. "These features make it easier to understand when you might be under attack."

NIOS Version 4.3r2 is available across five appliance platforms. Pricing starts at about US$2,500 for the lower-end appliances. The operating system software upgrade is available free of charge to current customers with valid maintenance contracts.

Join the PC World newsletter!

Error: Please check your email address.

Tags network securityNetwork managementDNSinfoblox

Our Back to Business guide highlights the best products for you to boost your productivity at home, on the road, at the office, or in the classroom.

Keep up with the latest tech news, reviews and previews by subscribing to the Good Gear Guide newsletter.

Denise Dubie

Network World
Show Comments

Most Popular Reviews

Latest News Articles

Resources

PCW Evaluation Team

Azadeh Williams

HP OfficeJet Pro 8730

A smarter way to print for busy small business owners, combining speedy printing with scanning and copying, making it easier to produce high quality documents and images at a touch of a button.

Andrew Grant

HP OfficeJet Pro 8730

I've had a multifunction printer in the office going on 10 years now. It was a neat bit of kit back in the day -- print, copy, scan, fax -- when printing over WiFi felt a bit like magic. It’s seen better days though and an upgrade’s well overdue. This HP OfficeJet Pro 8730 looks like it ticks all the same boxes: print, copy, scan, and fax. (Really? Does anyone fax anything any more? I guess it's good to know the facility’s there, just in case.) Printing over WiFi is more-or- less standard these days.

Ed Dawson

HP OfficeJet Pro 8730

As a freelance writer who is always on the go, I like my technology to be both efficient and effective so I can do my job well. The HP OfficeJet Pro 8730 Inkjet Printer ticks all the boxes in terms of form factor, performance and user interface.

Michael Hargreaves

Windows 10 for Business / Dell XPS 13

I’d happily recommend this touchscreen laptop and Windows 10 as a great way to get serious work done at a desk or on the road.

Aysha Strobbe

Windows 10 / HP Spectre x360

Ultimately, I think the Windows 10 environment is excellent for me as it caters for so many different uses. The inclusion of the Xbox app is also great for when you need some downtime too!

Mark Escubio

Windows 10 / Lenovo Yoga 910

For me, the Xbox Play Anywhere is a great new feature as it allows you to play your current Xbox games with higher resolutions and better graphics without forking out extra cash for another copy. Although available titles are still scarce, but I’m sure it will grow in time.

Featured Content

Latest Jobs

Don’t have an account? Sign up here

Don't have an account? Sign up now

Forgot password?