Data sheet

Edge for networking

Intelligently direct DNS traffic and tame conditional forwarding rules

Contact Us
Download as PDF
BlueCat Edge for networking datasheet header with logo, page title, and introductory marketing text
Key Takeaways
  • BlueCat Edge functions as the first-hop DNS resolver, providing centralized visibility, control, and security enforcement for all DNS queries across hybrid and multicloud environments.
  • Intelligent forwarding via Edge service points replaces manual conditional forwarding rules by using namespaces and match/exception domain lists to route queries to the optimal resolution path.
  • Edge improves DNS performance and reduces latency by provisioning multiple optimized resolution paths and simplifying overlapping zones and complex resolution topologies.
  • Highly available and fault-tolerant Edge service points increase the resilience of critical DNS infrastructure and help prevent downtime in distributed networks.
  • Administrators can apply granular policies on Edge to block, redirect, or monitor DNS traffic based on client identity, accessed resources, and detected security issues, with full logging and SIEM integration.
  • Edge supports zero-touch deployment of unlimited virtual service points across on-premises BDDS, virtual platforms, select Cisco devices, and major public clouds, and is WCAG 2.2 AA compliant by default.

Overcome DNS resolution bottlenecks and reduce latency

In a hybrid and multicloud world, DNS queries can potentially resolve to multiple locations. To achieve highly performant and available DNS, network teams need an automated way to configure the shortest and most secure resolution path and reduce latency. Without complete visibility and control at the first hop of any DNS query, network admins cannot keep up with rapid changes to DNS configuration in multicloud environments or relieve data center bottlenecks to resolve queries for endpoints across wide, distributed networks.

The solution: BlueCat Edge

BlueCat Edge adds a much-needed layer of visibility, control, and detection for DNS. As the first hop of any DNS query, Edge works to intelligently direct DNS traffic, tame conditional forwarding rules, block DNS queries based on network and security policies, and help monitor and collect all DNS query and response information for diagnostics and investigations.

Services, apps, and data can reside simultaneously in different clouds and regions across different internal and external zones. Instead of manually maintaining reams of conditional forwarding rules across multiple authoritative DNS servers, Edge uses intelligent forwarding via service points to set conditions and direct queries to the right destination.

BlueCat interface displaying DNS query timestamps, IP addresses, query details, and inspect client activity button

Benefits

Improve performance

Provision multiple optimized resolution paths, and simplify overlapping zones and DNS resolution paths to improve network performance.

Prevent downtime

Increase the resilience of critical infrastructure by resolving hybrid and multicloud DNS with highly available and fault-tolerant service points.

Accessible and compliant by default

Edge is unconditionally compliant with WACG 2.2 AA standards to empower every user.

Deploy anywhere

To handle any client load, deploy Edge service points on BlueCat DNS/DHCP Servers (BDDSes), in virtual environments such as open-source KVM and VMware ESXi, on select Cisco platforms, and in cloud environments (AWS, Azure, and Google Cloud).

Edge service points

Edge service points, illustrated below, are first-hop DNS resolvers. They intelligently apply security policies and forwarding rules to every query, ensuring DNS traffic moves through the cloud safely and optimally.

BlueCat Edge service point architecture for internal and external DNS queries with caching, security, and Splunk analytics

Figure 1. Edge architecture

Features

Intelligent forwarding using namespaces

Route traffic from remote offices or client networks to the most appropriate resolution path using match or exception domain lists.

Policy configuration

Admins can apply policies to block, redirect, or monitor DNS requests based on clients, resources accessed, or detected security issues.

Zero-touch deployment

Deploy unlimited numbers of virtual service points with hosted services without making changes to your existing DNS infrastructure, and at no extra cost.

Edge Resolver

Simplify and accelerate DNS resolution for hybrid and multicloud environments.

Logging and reporting

Tame big data problems with powerful query log filters, graphical analysis, and exporting DNS data to popular SIEMs.

Next steps

Learn how you can intelligently direct your network’s DNS traffic and tame conditional forwarding rules.

Learn More

BlueCat’s Intelligent Network Operations (NetOps)

BlueCat’s Intelligent NetOps solutions provide the analytics and intelligence needed to enable, optimize, and secure the network to achieve business goals. With an Intelligent NetOps suite, organizations can more easily change and modernize the network as business requirements demand.

Discover the Intelligent Network

⏳ Cisco Live is almost here. Put BlueCat on your agenda for smarter, more secure networks.

Get the details