Page tree

Versions Compared


  • This line was added.
  • This line was removed.
  • Formatting was changed.


  • Automated mitigation of phantom domain attacks (a subset of NXDOMAIN attacks), as described in Automated Mitigation of Phantom Domain Attacks.
  • Configurable parameters used to detect possible NXDOMAIN attacks, as described in Detecting NXDOMAIN Attacks.
  • Mitigation of NXDOMAIN responses by removing the LRU (Least Recently Used) items from the list of NX (non-existent) RRsets. The appliance uses the LRU list to select entries for removal from the cache when the cache utilization exceeds the allowed threshold. For more information, see Mitigating Possible NXDOMAIN Attacks.
  • CLI commands for configuring RRL (Response Rate Limiting) to mitigate DNS DDoS attacks by reducing the rate at which authoritative servers respond to high volumes of malicious queries, as described in Support for RRL (Response Rate Limiting).

Infoblox also offers the following security features to fully protect your DNS infrastructure and implementation: