Configuring On-Prem DNS Firewall Service
- Gary Leicht
To configure the On-Prem DNS Firewall service, go to the Infoblox Portal > Configure > Security > On-Prem Firewall and complete the following four-step process:
Step 1: Downloading and reading the Infoblox Threat Intelligence Feed Deployment Guide. The deployment guide walks you through the four-step process of setting up and configuring On-Prem DNS Firewall.
Once Step 1 has been completed, proceed to Step 2 of the On-Prem DNS Firewall configuration process.
Step 2: Configuring NIOS Feeds. Configure the feed configurations values to set up NIOS feeds with the provided feed addresses
Once Step 2 has been completed, proceed to Step 3 of the On-Prem DNS Firewall configuration process.
Step 3: Configuring the Distribution Server. You must configure a DNS server to act as a lead secondary that receives feed updates from the threat intelligence data server and redistributes the updates to other servers.
Once Step 3 has been completed, proceed to Step 4 of the On-Prem DNS Firewall configuration process.
Step 4: Configuring Members. Configure IP address members to receive notifications and updates (this step is optional, but recommended).
Step 4 completes the On-Prem Firewall Service configuration process.
Sizing Guidelines for DDI Appliances
Infoblox DDI appliances have limits on the number of threat intelligence entries that can be loaded on to each appliance. These recommended per-appliance limitations help achieve acceptable performance and should not be exceeded. For information on sizing DDI appliances, see Sizing Guidelines for DDI Appliances.
Enabling and Scaling of Custom RPZ Feeds
When DNS requests are blocked or redirected by a threat feed on the Infoblox Threat Defense, use the option to apply and enable a custom RPZ feed for smaller appliances. For information, see Enabling and Scaling of Custom RPZ Feeds.
Selecting a TSIG Key Format
For information on choosing a TSIG key format, see Selecting a TSIG Key Format.