BlueCat is proud to introduce enhancements to BlueCat DNS Edge™ (Edge). The September 2018 release of Edge introduces easier navigation, new policy control to reduce attack surface, and Anycast support.
Easier Navigation with UI Enhancements
Domain Name System (DNS) records can generate a lot of log data. With Edge you now can more easily identify and take action on anomalies. The Edge September 2018 release makes it easy to investigate a spike of DNS activity with interactive capabilities added to the homepage dashboard. Simply highlight peaks of interest and Edge will auto-populate a search command to expose just those queries for further review.
Operators can take DNS queries under the microscope with this panel and easy lookup tool. You can investigate and Identify related policy details or components that are now hyperlinked. These panel views are organized as tabs in the view panel on a selected DNS request. Simply right-click on a hyperlink to open a new session on that component in a separate browser tab.
With quick access to related policies and other information, the details panel becomes a lookup tool. An operator can quickly view details and make immediate updates.
Reduce attack surface with Policy Control: Protect against DNS attacks on protected data
To protect data, it requires layering security controls and needs to include the DNS protocol. Edge limits access to data like intellectual property, finance or personal records, and patient data. Only a set of privileged source IP addresses can access such sensitive data.
The Edge September 2018 release makes it possible to block all access except for defined sources on your network. You can reduce your digital attack surface and bolster your organization’s overall security posture. Largely by preventing DNS access to data, operating systems, or services you care most about.
Reviewing DNS logs within Edge of blocked attempts indicates potentially malicious activity from bad actors or compromised systems. Edge can be used to investigate surrounding DNS activity from external threat systems.
Edge, as part of your DNS infrastructure, now natively supports Anycast for Border Gateway Protocol (BGP) and Open Shortest Path First (OSPF) protocols. Organizations using Anycast are afforded optimized response latency and improved service availability. Thereby boosting user experience; now supported with the Edge September 2018 release.
With Edge, Anycast customers gain real-time visibility of DNS activity and policy control. Allowing customers to limit access and protect against DNS-based attack vectors. Edge provides visibility of both internal and external DNS requests, correlating originating IP address, query and response.
Critical conversations on critical infrastructure
Find out how your peers are managing their networks through profound change. Watch this series of live interactive discussions with IT pros & join the debate in Slack.
SUNBURST/Solorigate Situation Briefing
BlueCat leaders discuss how the malware attack via SolarWind’s Orion platform exploited DNS and how BlueCat Edge could have helped to detect it.
Customer situation brief on SUNBURST/Solorigate
Learn more about the attack via the SolarWinds Orion platform and how BlueCat products use DNS to help protect customers against compromises like it.
On the road to platform hardening, consider a STIG
Security Technical Implementation Guides standardize security configuration on networks, servers, and devices. BlueCat uses them and you can, too.
To better see the threats on your network, try DNS
DNS is a vector used in most cyber attacks. When it comes to DNS, BlueCat can enhance visibility, detection, and containment of threats to your network.