Introduction

In addition to its role as a core connectivity technology, DNS offers powerful opportunities for improving your cybersecurity.  This document will help you achieve optimal security and performance benefits by effectively integrating the Infoblox BloxOne™ Threat Defense solution with other DNS solutions, specifically the AWS VPC (Virtual Private Cloud) and the AWS Route 53 DNS Firewall.

BloxOne Threat Defense is a cloud-native solution that operates at the DNS level to see threats that other solutions do not and stops attacks earlier in the attack lifecycle. Through extensive automation and ecosystem integration options, it can uplift the effectiveness of the existing security stack, drive efficiencies in SecOps, secure digital and work-from-anywhere efforts and lower the total cost for cybersecurity.

To help you realize these benefits, this document will explain the simple process of routing AWS VPC DNS traffic to BloxOne Threat Defense to effectively protect the VPC while minimizing the need for additional security investments by maximizing the effectiveness of your existing tools.

It also provides guidance on leveraging the TIDE feature of BloxOne Threat Defense to manage threat intelligence and feed it to AWS Route 53 DNS Firewalls to optimize threat detection. TIDE allows you to choose your preferred sources of threat intelligence to be aggregated, normalized, and distributed to AWS DNS Firewalls.  TIDE empowers you to identify and manage your own unique blend of threat feeds. Although this document will focus on using TIDE with the AWS DNS Firewall, it can also be used to uplift other solutions throughout your security stack to improve your defense, investigation, and response capabilities.