Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Network Security

Infoblox Unveils New Security, Availability and Automation Solutions

Infoblox unveiled three new offerings designed to give customers greater security and control over their networks.

Infoblox unveiled three new offerings designed to give customers greater security and control over their networks.

The new Infoblox DNS Firewall, Infoblox Security Device Controller, and Infoblox Trinzic 100 Network Edge Services Appliance are part of Infoblox’s portfolio of automated network control products and will allow organizations to better manage their networks, Infoblox said Jan. 23.

The DNS Firewall, an add-on option to the Infoblox DDI (DNS, DHCP, and IPAM) platform, offers customers up-to-date malware detection, while Infoblox Security Device Controller provides automated firewall management, Arya Barirani, vice-president of product marketing at Infoblox, told SecurityWeek.

Infoblox LogoInfoblox DNS Firewall, Infoblox Security Device Controller and Infoblox Trinzic 100 Network Edge Services Appliance are available immediately.

“We believe better control of the network is the best way to achieve business agility and efficiency, and achieve greater security,” Steve Nye, executive vice-president of products & strategy at Infoblox, said in a statement.

Infoblox DNS Firewall offers up-to-date threat detection to prevent malware from exploiting the Domain Name System (DNS) to connect to attack servers and sites. The DNS Firewall uses a real-time expert-generated malware data feed to populate Infoblox recursive DNS servers with the list of all known malicious domain names and IP addresses, Barirani said. When a user on the network, or a program on an infected endpoint, tries to connect with a known malicious server or domain, the firewall blocks the attempt and flags the possibly-infected system for the IT team to take appropriate action.

Infoblox partnered with a third-party firm for the real-time feed, but organizations can decide to use their own or a different provider, Barirani said.

Network security teams often have a hard time keeping up with the volume and frequency of firewall changes and policies necessary to secure the IT network, Barirani said. Security device rule updates can be time-consuming, especially for larger organizations. The new Infoblox Security Device Controller appliance allows the security team to define firewall rules and push them out to all the devices at once so that policies are applied consistently throughout the network, Barirani said.

Instead of applying firewall rules to many devices individually, network security staff can now analyze, stage, test, and provision changes automatically, even in a multi-vendor environment, Infoblox said. The platform makes it easier to track changes, ensure compliance, and maintain one set of change logs.

Advertisement. Scroll to continue reading.

Large organizations can have as many as a million rules, making it difficult to track whether there are any open-ended, vague rules, conflicts, or even out-dated rules, Barirani said. Using the Infoblox appliance will help security teams identify problem rules and to also test out what changes will look like before applying them, he said.

Infobox Trinzic 100 Appliance PhotoFor many organizations, the update process remains manual and IT teams spend a lot of time on the task, Stu Bailey, founder and CTO of Infoblox, told SecurityWeek. The Infoblox Security Device Controller automates access policy control and policy provisioning, which allows network security teams to focus on other tasks, Bailey said. Automation would also reduce the chance of errors, Bailey said.

Finally, the new Infoblox Trinzic 100 Network Edge Services Appliance is a low-cost easy to deploy appliance that provides reliable network control for remote branch offices, Barirani said.

The appliances use Infoblox Grid technology to link appliances across distributed locations so that administrators can manage them all at once without having to have expensive IT staff at each site. All configurations or changes can be made from one central place and applied to all edge devices located at remote locations, Infoblox said. The appliances are also easy to deploy and don’t require any special IT expertise on site, Bailey said.

The Trinzic 100 appliance is particularly suitable for organizations with multiple remote locations, such as retailers, hospitals, and hospitality sites, since they need to keep functioning even when the central network goes down, Barirani said.

Related Resource: Defeating APT Malware With a DNS Firewall

Written By

Click to comment

Trending

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join the session as we discuss the challenges and best practices for cybersecurity leaders managing cloud identities.

Register

SecurityWeek’s Ransomware Resilience and Recovery Summit helps businesses to plan, prepare, and recover from a ransomware incident.

Register

Expert Insights

Related Content

Identity & Access

Zero trust is not a replacement for identity and access management (IAM), but is the extension of IAM principles from people to everyone and...

Cybersecurity Funding

Network security provider Corsa Security last week announced that it has raised $10 million from Roadmap Capital. To date, the company has raised $50...

Network Security

Attack surface management is nothing short of a complete methodology for providing effective cybersecurity. It doesn’t seek to protect everything, but concentrates on areas...

Application Security

Virtualization technology giant VMware on Tuesday shipped urgent updates to fix a trio of security problems in multiple software products, including a virtual machine...

Identity & Access

Hackers rarely hack in anymore. They log in using stolen, weak, default, or otherwise compromised credentials. That’s why it’s so critical to break the...

Application Security

Fortinet on Monday issued an emergency patch to cover a severe vulnerability in its FortiOS SSL-VPN product, warning that hackers have already exploited the...

Cyberwarfare

Websites of German airports, administration bodies and banks were hit by DDoS attacks attributed to Russian hacker group Killnet

Network Security

A zero-day vulnerability named HTTP/2 Rapid Reset has been exploited to launch some of the largest DDoS attacks in history.