...
To cover all basis for possible cyber attack, BloxOne Infoblox Threat Defense allows you to set up protection for one or all of these IP sources based on your business requirements.
...
To protect internet-facing IP address spaces your company uses, you can register these networks using the External Networks feature through the Cloud Infoblox Services Portal. You identify these networks by IP addresses. A network can contain a group of IPv4 addresses or blocks. If you have multiple internet-facing networks, Infoblox recommends that you register all of them to ensure that they are protected when traffic is pointed at them. This also prevents IP spaces belonging to your company from being incorrectly assigned. Please be aware that no protection is provided for traffic pointed to a network that has not been registered.
...
Roaming End Users
You can set up BloxOne Infoblox Endpoint and BloxOne Infoblox Mobile Endpoint to secure roaming end users in varying environments such as home offices, branch offices, public spaces, and more. BloxOne Infoblox Endpoint is a lightweight mobile agent that can be used to secure roaming end users, devices, and systems no matter where they are, extending enterprise-level security to remote locations and work-from-home environments. To enable end users to connect to BloxOne CloudInfoblox Platform, you must download and install the Endpoint client on
their devices. The client enforces security policies that you apply to the remote networks, regardless of where the end users are and which networks they are connected to. Once installed, BloxOne Infoblox Endpoint will automatically update when updates are available.
For information on the installation and deployment of BloxOne Infoblox Endpoint, see Installing Endpoint.
For information on how to deploy BloxOne Infoblox Mobile Endpoint, see Managing BlloxOne BloxOne Mobile Endpoint.
To view the BloxOne Infoblox Endpoint deployment guides, click here for BloxOne Infoblox Endpoint and here for BloxOne Infoblox Mobile Endpoint.
On-Premises Networks
For on-premises networks (including the NIOS Grid) in your enterprise infrastructure, BloxOne Infoblox Threat Defense provides DFP (DNS Forwarding Proxy) as a DNS forwarder that secures your DNS traffic. The DFP protects your DNS traffic when queries are sent over the internet to the BloxOne Infoblox anycast DNS server. You can run DFP as a service on hosts that you implement to connect to BloxOne CloudInfoblox Platform, within which you can take full advantage of the security features to protect your enterprise infrastructure. If for any reason the host cannot reach the BloxOne Infoblox anycast DNS server, DFP will send requests to a local DNS server that protects your clients via the RPZ (on-prem DNS Firewall) feeds.
For information on the installation and deployment of DFP, see Configuring see Creating DNS Forwarding Proxy Services. see Configuring General DNS Forwarding Proxy Information.
To view the DNS Forwarding Proxy Deployment Guide, click here