DNS Firewall Protect Users and Block DNS Malware Activity DNS Firewall mitigates malware used to steal critical data, interrupt business continuity and damage brand reputation. DNS Firewall Solution Benefits 91% of malware use DNS services to build attacks which easily circumvent traditional network security systems. DNS Firewall brings dynamic cybersecurity threat intelligence and DNS filtering to identify suspicious activity and prevent malware spread across your network. Mitigate DNS Attacks At The Source Thwart initial infection and phishing - ransomware, virus, spyware etc. Automatically Adapt Malware Protection Threat Intelligence services to keep pace with malicious domains/IPs. Proactively Prevent New Attacks Detect and block malware communication with C&C servers and botnets. Provide Advanced Threat Reporting Combine logging with existing event managers, generate reports using plugins such as Splunk or Graylog. Locate Infected Devices On Your Network NetChange network discovery tool helps fast localization for immediate remediation. Purpose-Built DNS Security to Complement Traditional Protection DNS Firewall is embedded in EfficientIP SOLIDserver™ appliances. The product provides a purpose-built and complementary solution to traditional enterprise network security systems, to effectively protect against DNS malware and advanced persistent threats (APT). Its enhanced DNS query filtering capabilities, combined with dynamic threat intelligence feeds, allow for the quick identification of suspicious device activity, preventing malware infection and spread within a network, as well as phishing campaigns and data exfiltration attempts. Prevent Infection and Block DNS-Malware Activity The SOLIDserver DNS Firewall solution, based on RPZ (Response Policy Zone), offers a dedicated layer of defense for malware protection and mitigation. DNS Firewall prevents connected devices from becoming infected with malware and blocks their activity by enabling recursive DNS servers to stop or redirect queries from clients that want to access identified malicious domains and/or IPs. Illegitimate communications with C&Cs/botnets, and DNS based data exfiltration (DNS tunneling) are immediately blocked, before they impact and damage your company. Adapt Malware Protection With Threat Intelligence To keep pace with the ever-evolving threat landscape, DNS Firewall includes dynamic threat intelligence services. DNS Firewall comes with this kind of constantly updated data feed built from various distributed sources, to combat categories such as: Abuse and spam related domains Phishing-related domains Malware-related domains Cracked website FQDN(s) Botnet Command and Control The data feed can be easily customized with specific filtering policies to adapt to local security requirements. Using DNS Guardian, internal threat intelligence can be developed, bringing capability to detect zero-day malicious domains. Request A Demo of DNS Firewall See DNS Firewall in action with a demo of the 360º DNS Security suite. Get Started Get Unified Control of DNS Filtering Policies The SOLIDserver appliance brings advanced filtering policy management capability, ensuring an up to date list of malicious or forbidden IP addresses, domains, URLs, or name servers. The entire DNS Firewall architecture is automatically updated regardless of the server type (Linux or EfficientIP’s secure DNS appliance) protecting - in a single operation - your organization from malware attacks. Enhance Malware Mitigation and Remediation with Infected Device Identification Leverage DDI and discovered network data to locate infected devices with technical, organizational and contextual information (site, floor, IP address, name etc.) for improved threat remediation and security response. Track over time historical compromised device localizations to spot lateral movement of malware and block their activity. Benefit From Advanced DNS Threat Reporting SOLIDserver pre-defined or customized reports give consolidated visibility and data-driven insights on DNS services for network security teams. RPZ analysis reports are also available to detect filtered domains and most requesting clients. In addition, SOLIDserver delivers high-performing logging capabilities which can be seamlessly integrated with leading SIEM solutions such as Kibana, Splunk and QRadar. This integration provides DNS data for log correlation, enabling centralized analysis and reporting, including immediate access to requested malicious domains. Key Resources Discover more content related DNS Firewall Videos Hacking Demo #1 Mail Infection Explore Datasheets DNS Firewall: Protecting and Defending Against Malware Explore White Papers Enhancing Threat Intelligence Services Explore View All Resources More Like This DNS Firewall is part of EfficientIP’s 360° DNS Security Offering, which brings protection for your users, apps and data, whether on-premise or in the cloud. Below are examples of some of our other innovative network security solutions. DNS Guardian The most advanced DNS security solution on the market to protect users, apps and data against attacks such as cache poisoning, DDoS and data exfiltration. Explore Client Query Filtering Security solution which combines DNS filtering with Deny/Allow lists and microsegmentation to improve App Access Control for Zero Trust strategies. Explore DNS Blast World’s fastest DNS appliance offering carrier-grade DNS DDoS attack protection for combatting extreme volumetric threats Explore Assess Your DNS Risk In order to help you better understand the usage context and behavior of your DNS clients, EfficientIP offers a free assessment involving expert analysis of real DNS traffic. Learn More
