...
Feed | Default Action | Precedence | Section | ||
Default Allow | ALLOW - No Log | 1 | Default Section | ||
Default Block | BLOCK - No Redirect | 2 | |||
Infoblox Base | BLOCK - No Redirect | 3 | Block Section | ||
Infoblox Base IP | BLOCK - No Redirect | 4 | |||
Infoblox High Risk | BLOCK - No Redirect | 5 | |||
Threat Insight - Zero Day DNS | BLOCK - No Redirect | 6 | |||
Infoblox Medium Risk | BLOCK - No Redirect | 7 | |||
Infoblox Low Risk | ALLOW - With Log | 8 | Allow Section | ||
Infoblox Informational | ALLOW - With Log | 9 | |||
Threat Insight - DGA | ALLOW - With Log | 10 | |||
Threat Insight - Data Exfiltration | ALLOW - With Log | 11 | |||
Threat Insight - FastFlux | ALLOW - With Log | 12 | Threat Insight - DNS Messanger | ALLOW - With Log | 1312 |
Threat Insight - Notional Data Exfiltration | ALLOW - With Log | 1413 | |||
Bogon | Not Included | Policy Rules: (user can add these with corresponding action - per their policy) | |||
Cryptocurrency hostnames and domains | Not Included | ||||
TOR Exit Node IPs | Not Included | ||||
DHS_AIS_IP | Not Included | ||||
EECN IPs | Not Included | ||||
Spambot IPs DNSBL | Not Included | ||||
US OFAC Sanctions IPs | Not Included | ||||
Sanctions Med | Not Included | ||||
Sanctions High | Not Included | ||||
Farsight Newly Observed Domains (NOD) | Not Included | ||||
Proofpoint ETIQRisk Hostname | Not Included | ||||
Proofpoint ETIQRisk IP | Not Included | ||||
...
Feed | Default Action | Precedence | |||
Default Allow | ALLOW - No Log | 1 | Default and Custom (if any) Section | ||
Default Block | BLOCK - No Redirect | 2 | |||
Custom List (if any manually configured) | BLOCK - No redirect | 3 | |||
Infoblox Base | BLOCK - No Redirect | 4 | Block Section | ||
Infoblox Base IP | BLOCK - No Redirect | 5 | |||
Infoblox High Risk | BLOCK - No Redirect | 6 | |||
Threat Insight - Zero Day DNS | BLOCK - No Redirect | 7 | |||
Infoblox Medium Risk | BLOCK - No Redirect | 8 | |||
Categorization filter (if any manually configured) | BLOCK - No redirect | 9 | |||
Application filter (if any manually configured) | BLOCK - No redirect | 10 | |||
Infoblox Low Risk | ALLOW - With Log | 11 | Allow Section | ||
Infoblox Informational | ALLOW - With Log | 12 | |||
Threat Insight - DGA | ALLOW - With Log | 13 | |||
Threat Insight - Data Exfiltration | ALLOW - With Log | 14 | Threat Insight - FastFlux | ALLOW - With Log | 15 |
Threat Insight - DNS Messanger | ALLOW - With Log | 1615 | |||
Threat Insight - Notional Data Exfiltration | ALLOW - With Log | 1716 | |||
Categorization filter (if any manually configured) | ALLOW - With Log | 1817 | |||
Application filter (if any manually configured) | ALLOW - With Log | 1918 | |||