Infoblox Advanced DNS Protection - Security Business -Macnica

Security business menu

Security business
HOME

To be elected
cause

Service

Handling Manufacturer

Examples/reports/
Blog/Glossary

Seminar/
video on demand

TOP

Products/Services

product
service
- Diagnosis of DDoS attack by looking at DNS
- Diagnosis of targeted attacks seen in DNS

Specifications/Technical Information

Specifications/Technical Information

solution

solution
- Targeted attack countermeasures with Infoblox and FireEye
- DNS security

User stories

support

- Macnica Support

Seminar content

Document request

inquiry

Event/Seminar

video on demand

Infoblox

infoblocks

Advanced DNS Protection

Solutions provided by Infoblox Advanced DNS Protection

Unique detection and prevention

Determines normal DNS traffic even during DDoS attacks
Good DNS queries by dropping only bad queries
respond to

Centralized visibility

All attacks happening across the network
Visualize all at once with a detailed report screen
Effective in deciding how to respond to attacks

Real-time defense against emerging threats

Rules generated by threat analysis and research
Regular automatic updates
More immediate response than patch updates

What kind of attacks is it effective against?

attack type	Attack method
physical attack	DNS amplifier attack / DNS reflector attack / DRDoS attack
	TCP SYN flood
	UDP flood
	ICMP flood
	Random Domain Attack (DNS Water Torture)
exploit	DNS-based exploit
	cache poisoning
	protocol anomaly
	DNS server scouting
	DNS tunneling
	DNS hijack

Attack example 1: Random DNS domain attack

Attack example 2: DNS cache poisoning

Frequent occurrence of phishing sites due to cache poisoning
Exploitation of privacy information such as credit cards, real damage of billions of yen?

Attack example 3: DNS tunneling

Solution components

Infoblox Advanced DNS Protection Service

Continuously monitor, detect, and drop packets for DNS-based attacks such as DDoS attacks, amplification attacks, and DNS exploits based on security rules
Respond to normal packets under attack conditions
Automatically updates security rules regularly to protect against new threats
It is also possible to tune the threshold using the distributed security rule as a template.

ADP Deployment Configuration

When a new DNS attack occurs or a vulnerability in BIND is confirmed, the Infoblox threat research team immediately recognizes the attack, updates security rules, deploys from Grid Master to Advanced DNS Protectiona appliance, handle.

Inquiry/Document request

Macnica Infoblox

inquiry Document request

TEL：045-476-2010
E-mail：infoblox-sales@macnica.co.jp

Weekdays: 9:00-17:00

Site Search