To access the BloxOne Threat Defense Cloud service, you must forward your DNS traffic (except for internal domain resolution) to the BloxOne Threat Defense Cloud name server (IP address: 126.96.36.199 and 188.8.131.52).
Before you point your DNS to BloxOne Threat Defense Cloud, ensure that your network and DNS server are properly configured for sending DNS queries and receiving responses. For more information, see Testing Network Configuration.
Depending on your network configuration, you may need to perform different procedures to configure your DNS forwarders to use the BloxOne Threat Defense Cloud name server. If you have an on-prem Infoblox Grid, you can configure your Grid members (acting as DNS forwarders) to use the BloxOne Threat Defense Cloud name server. If you are using Unbound or BIND as your DNS resolver, you can make some modifications in your DNS configuration file to configure your DNS forwarders to use the BloxOne Threat Defense Cloud name server IP. You can also configure Microsoft servers to use DNS forwarders.
A DNS forwarder is essentially a name server to which all other name servers first send queries that they cannot resolve locally. The forwarder then sends these queries to DNS servers that are external to the network, avoiding the need for the other name servers in your network to send queries off-site. A forwarder eventually builds up a cache of information, which it uses to resolve queries. This reduces Internet traffic over the network and decreases the response time to DNS clients.
To enable recursion on the Grid for forwarding DNS traffic, see On-Prem Infoblox Grid.
To modifying your DNS configuration file for Unbound DNS Resolver, BIND DNS Resolver, or Microsoft DNS Resolver, see the following:
This page has no comments.