DNS RPZ Firewall
Stop Threats at the Root
DNS FIREWALL OVERVIEW
Safeguard your digital infrastructure with Malware Patrol’s DNS RPZ Firewall. DNS firewalls enhance your security posture and defend against malicious attacks, unauthorized access, and data breaches. Stay one step ahead of cybercriminals and keep your organization’s data safe “at the root.”
Malware Patrol threat intelligence on malware, ransomware, phishing, cryptomining is packaged into DNS zones ready to be consumed by a DNS resolver. The DNS Firewall functionality then uses this data to block requests to these domains, keeping users safe from these online threats.
No changes to the existing infrastructure or installation of software in the endpoints are required. A DNS Firewall is a transparent, fast and reliable mechanism that enables an additional layer of protection for users and devices connected to the Internet.
– Command-and-Control Server Domains
– DNS-over-HTTPS Servers
– Malware & Ransomware
– Add-on for an additional fee: Scam Domains
– Updated every 5 minutes
– Automatic transfers (AXFR/IXFR)
– Cisco Umbrella domain ranking-filtered zones
– Configure and forget
SET UP A DNS FIREWALL IN 5 EASY STEPS
Easy to install and maintain, no need for additional hardware or topology changes
Mitigate at the root during name resolution
Granular protection against the most common attacks, including malware, ransomware, and phishing
Prevent data exfiltration
Identify infected devices
Free up your security and tech support teams by preventing machine compromises
Educate end users by redirecting them to a walled garden whenever they try to reach a malicious website
May reduce cyber insurance premiums
FLEXIBILITY IS THE KEY FOR DNS SECURITY
It can be complicated to restrict access at the DNS level. While it is usually without many issues that you can block C2s, DGAs, and phishing sites, malware poses some problems. That is because many legitimate and very popular sites unknowingly host malware. These include Dropbox, Google Docs, GitHub, and many others. When administrators or service providers block access to these sites, many of which are used for work, it can be very problematic. This is why granularity is key.
A Zone for Each Threat Type
Malware Patrol offers seven separate response policy zones. With a zone for each threat type, it is easier to maximize threat coverage while minimizing the impact on users.
Each zone can be implemented – or not – depending on your needs.
Whitelist and Filter Out Top Domains
Simple web interface that allows customers to whitelist specific domains.
And, to further help customers avoid blocking high traffic sites, Malware Patrol includes zone files with the top 25,000, 100,000, and 1,000,000 Cisco Umbrella domains removed. The Cisco Umbrella classification is updated weekly and applied seamlessly.
Custom Walled Garden
You can use our – walled garden – to send your users to when the try to resolve a malicious domain. Or, you can configure your company’s own page.