Presentation is loading. Please wait.

Presentation is loading. Please wait.

Closing Automation and DNS Security Gaps in Today’s Dynamic World

Published byMitchell Ross Modified over 6 years ago

Similar presentations

Presentation on theme: "Closing Automation and DNS Security Gaps in Today’s Dynamic World"— Presentation transcript:

1 Closing Automation and DNS Security Gaps in Today’s Dynamic World
As an Infoblox partner, there are great opportunities to leverage initiatives your customers and prospects are investing in today. Matt Gowarty, Sr. Product Marketing Manager and Phil Miller, Solutions Architect

2 Facts Impacting You Today
90% of traffic on networks will be Video (Cisco VNI) $7.7B Mobile Devices surpassing 7.1B people (GMV) 60% of MNOs have experienced a network outage or degradation due to malicious attacks (Heavy Reading) 1.1B payments done through Mobile per day (ITU, Strategy Analytics) 1.4B Smartphones compared to 2B PC’s (Gartner) 80M Hours of Youtube Watched Daily (Gartner) 1.8M Smartphones are sold per day (Gartner, IBSG) Collaboration is driving the next wave of business growth, innovation and productivity. There are several market transitions happening now that we are uniquely suited to address: Mobility Video Social media The Cloud Desktop virtualization In total, a $38B market opportunity. And one that is ours for the taking…

3 Need Integration into Heterogeneous Environments
Common Challenges Excessive manual tasks Silo management and visibility tools Lack of streamlined workflows across platforms Efficiency DNS is the #1 attack vector Reduce security risks to core network infrastructure Minimize exposure of end user vulnerabilities Security High availability requirements Minimize latency for customer experience Flexible architecture for hybrid and NFV environments Availability Need Integration into Heterogeneous Environments Downtime due to server centric architecture No built-in HA. Complex clustering and split-scope Standard servers, open ports, non-hardened OS No protection against DNS DDoS Attacks No detection of Malware/APT No protection against data exfiltration Utilizing FTE’s for strategic initiatives Managing a heterogeneous environment Streamlining cumbersome processes

4 Core Network Services (DDI) Cloud Network Automation
Infoblox Overview Core Network Services (DDI) Secure DNS Cloud Network Automation Centralized Management

5 Validated By Leading Service Providers & Enterprises
7 of the top aerospace & defense companies 14 of the top 25 telco operators 9 of the top auto & truck manufacturers 228 mobile, broadband, Internet service providers 8 of the top retailers 34 countries deployed and supporting 8 of the top major banks 2 leading equipment suppliers preferred choice 50% of DNS, DHCP, IPAM market share Infoblox has a significant installed solution base. We currently provide solutions to over 200 service providers, including 14 tier 1 operators across the globe. We also provide solutions to leading enterprise, including the most discerning financial institutions. The company has a dominant market share of the technology category defined by Gartner as DDI. Source for top 14 telcos: The Global 100, by Total Telecom ( Oct 2015

6 Availability and Efficiency

7 Infoblox - Centralized Control and Visibility
Synchronized shared, distributed database Visibility across networks, regional switching or aggregation centers Cloud, NFV, virtualized, and on-prem solutions Grid Master Regional MTSO, Data Centers Regional Member Regional Member Infoblox Grid™ Virtual Appliance Member We’ve made network availability easy The symbol that looks like a brand of Infoblox is a new kind of database A distributed data base—we call it the Grid It’s a closed loop environment using DNS anycast and DHCP load balancing protocols that delivers resiliency and synchronization between all the Grid members in a shared database – all members of the Grid act as one You can centrally manage it This distributed database technology means everything is always shared A device is pulled out, our put in, the new device gets updated on any changes Or the new device can update the entire Grid That is how we perform automation maintenance Or deliver real-time DR or HA All benefits are delivered through the distributed database aspects of the Grid The Infoblox Grid™ is a unique distributed, High Availability architecture that: supports protocols essential for resilient service such as DNS Anycast and DHCP load balancing. enables interaction between Grid members allows all units to share a database and essentially “act as one.” allows Grid members to keep running independently if Wan Links are severed establishes relationships between appliances so that control is passed to other appliances or other Grid members upon hardware failures or site catastrophes. When hardware is replaced or when a zone is restored to the Grid the unit recovers its configuration and/or resynchronizes data with the Grid Master. Makes it easy to patch, maintain and upgrade the members without disruption on the network. Infoblox management automation creates a closed-loop between the DNS, DHCP and discovery services being managed. For example, if you reconfigure a network in a way that effects the IP addresses of server, the DNS records for those servers will be automatically updated. This dramatically increases efficiency and improves accuracy. 7

8 Elastic Scalability for NFV Environments
Infoblox Grid plus adapters monitors member load Notifies orchestrator to quickly scale up VMs Protection against sudden surges in DNS traffic 1 Phantom Domain Attack DNS DDoS Atttack DNS Traffic Infoblox Grid Master IB Rule Updates 2 The new member has been already pre- provisioned. A new license will be assigned from a pool of available addresses. 6 Performance Mon Performance Mon vSecure DNS 2 (site 2) NEW Orchestrator vSecure DNS 1 (site 1) 3 5 Notification to Orchestrator: Site 1 vSecure DNS1 is over utilized Command to Orchestrator: Spin up a new VSecure DNS 4 Work Flow to dynamically spins up/down New vSecure DNS servers

9 Challenges in Automation Today
Legacy Provision Virtual Instance Request IP or Use Allotment Forward IP Data for Tracking Update Database or Spreadsheet Request DNS Record Allocate and Manually Enter DNS Clean Up When Destroyed 1 2 3 4 5 6 Automated Manual Provision Virtual Instance Next Available IP Self Report IP Address Update Database or Spreadsheet Local DNS Name Creation Service Specific DNS Names (APN) Clean Up When Destroyed Automated Partial 1 Common Manual 2 3 5 6 4 1 6 2 3 4 5 Automated Provision Virtual Instance Orchestrated

10 Demo

11 Securing the Infrastructure and End Users

12 Why Should Securing DNS Be a Focus?
Security Teams At a Disadvantage with DNS DNS is everywhere and critical DNS was designed to be open and allow everything Lack of visibility, challenge in prioritization, untimely intel Ownership is in silos: NetOps teams typically own DNS – not SecOps Find malicious activity early (DNS is the first touch point)

13 But Don’t Existing Tools Already Do This?
Majority of Security Approaches Do Not Incorporate Critical DNS Data Critical gaps when not securing DNS Data exfiltration and data loss Malware communication and propagation Lack of visibility into infected hosts and devices

14 Secure DNS Demo

15 NFV Value Proposition: Reduce Transformation Risk
Infoblox Grid™ SDN/NFV Network Real-time provisioning Highly Automated Dynamic Capacity Management Predictive, Analytics-driven Gartner Physical Network Static provisioning and capacity Management Manual processes Non-configurable Hybrid Grid Master Visibility and control across all networks – physical, hybrid, virtual Rapid Provisioning – Network Automation Elastic scalability Multi-vendor ecosystem Stronger security Proven technology Virtual Secure DNS Features Physical Virtual Hybrid We’ve made network availability easy The symbol that looks like a brand of Infoblox is a new kind of database A distributed data base—we call it the Grid It’s a closed loop environment using DNS anycast and DHCP load balancing protocols that delivers resiliency and synchronization between all the Grid members in a shared database – all members of the Grid act as one You can centrally manage it This distributed database technology means everything is always shared A device is pulled out, our put in, the new device gets updated on any changes Or the new device can update the entire Grid That is how we perform automation maintenance Or deliver real-time DR or HA All benefits are delivered through the distributed database aspects of the Grid The Infoblox Grid™ is a unique distributed, High Availability architecture that: supports protocols essential for resilient service such as DNS Anycast and DHCP load balancing. enables interaction between Grid members allows all units to share a database and essentially “act as one.” allows Grid members to keep running independently if Wan Links are severed establishes relationships between appliances so that control is passed to other appliances or other Grid members upon hardware failures or site catastrophes. When hardware is replaced or when a zone is restored to the Grid the unit recovers its configuration and/or resynchronizes data with the Grid Master. Makes it easy to patch, maintain and upgrade the members without disruption on the network. Infoblox management automation creates a closed-loop between the DNS, DHCP and discovery services being managed. For example, if you reconfigure a network in a way that effects the IP addresses of server, the DNS records for those servers will be automatically updated. This dramatically increases efficiency and improves accuracy. 15

16 Thank You Visit our booth – A7 www.infoblox.com

Download ppt "Closing Automation and DNS Security Gaps in Today’s Dynamic World"

Similar presentations

© 2011 Infoblox Inc. All Rights Reserved. Infoblox – control, secure & automate Mike Carroll.

© 2011 Infoblox Inc. All Rights Reserved. Infoblox – control, secure & automate Mike Carroll.
Current impacts of cloud migration on broadband network operations and businesses David Sterling Partner, i 3 m 3 Solutions.

Current impacts of cloud migration on broadband network operations and businesses David Sterling Partner, i 3 m 3 Solutions.
Protect Your Business and Simplify IT with Symantec and VMware Presenter, Title, Company Date.

Protect Your Business and Simplify IT with Symantec and VMware Presenter, Title, Company Date.
Oracle Data Guard Ensuring Disaster Recovery for Enterprise Data

Oracle Data Guard Ensuring Disaster Recovery for Enterprise Data
1 | © 2013 Infoblox Inc. All Rights Reserved. Authoritative IP Address Management (IPAM) and its Security Implications Rick Bylina, Sr. Product Marketing.

1 | © 2013 Infoblox Inc. All Rights Reserved. Authoritative IP Address Management (IPAM) and its Security Implications Rick Bylina, Sr. Product Marketing.
© 2013 Cisco and/or its affiliates. All rights reserved. This document is Cisco Confidential. For Channel Partners only. Do not distribute. C97-721796-00.

© 2013 Cisco and/or its affiliates. All rights reserved. This document is Cisco Confidential. For Channel Partners only. Do not distribute. C
Cloud Computing Project By:Jessica, Fadiah, and Bill.

Cloud Computing Project By:Jessica, Fadiah, and Bill.
Minimising IT costs, maximising operational efficiency www.esteem.co.uk IO and NIMM: Now is the time Glyn Knaresborough Director of Strategic Consulting.

Minimising IT costs, maximising operational efficiency IO and NIMM: Now is the time Glyn Knaresborough Director of Strategic Consulting.
ABOUT COMPANY Janbask is one among the fastest growing IT Services and consulting company. We provide various solutions for strategy, consulting and implement.

ABOUT COMPANY Janbask is one among the fastest growing IT Services and consulting company. We provide various solutions for strategy, consulting and implement.
Architecting Enterprise Workloads on AWS Mike Pfeiffer.

Architecting Enterprise Workloads on AWS Mike Pfeiffer.
SDN & NFV Driving Additional Value into Managed Services.

SDN & NFV Driving Additional Value into Managed Services.
Prof. Jong-Moon Chung’s Lecture Notes at Yonsei University

Prof. Jong-Moon Chung’s Lecture Notes at Yonsei University
SUSE Linux Enterprise Server for SAP Applications

SUSE Linux Enterprise Server for SAP Applications
Rick Fleming HP Federal Practice Lead February 2009

Rick Fleming HP Federal Practice Lead February 2009
AuraPortal Cloud Helps Empower Organizations to Organize and Control Their Business Processes via Applications on the Microsoft Azure Cloud Platform MICROSOFT.

AuraPortal Cloud Helps Empower Organizations to Organize and Control Their Business Processes via Applications on the Microsoft Azure Cloud Platform MICROSOFT.
Wallpaper only – on screen during welcome and chat

Wallpaper only – on screen during welcome and chat
Device Maintenance and Management, Parental Control, and Theft Protection for Home Users Made Easy with Remo MORE and Power of Azure MICROSOFT AZURE APP.

Device Maintenance and Management, Parental Control, and Theft Protection for Home Users Made Easy with Remo MORE and Power of Azure MICROSOFT AZURE APP.
MICROSOFT AZURE ISV PROFILE: BMC SOFTWARE

MICROSOFT AZURE ISV PROFILE: BMC SOFTWARE
TOPdesk Service Management Software on Azure

TOPdesk Service Management Software on Azure
Avenues International Inc.

Avenues International Inc.

Similar presentations

Ads by Google