Case Study: Global U.S. Defense Agency achieves blocking of millions of malicious DNS queries daily with Infoblox DNS Firewall

Global U.S. Defense Agency - Customer Case Study

A large U.S. defense agency with hundreds of thousands of personnel and a global network linking hundreds of bases was being inundated with millions of DNS events per day, many from known or suspicious malicious IP spaces. The volume made manual blacklisting impractical, and an audit showed the agency could only trace malicious communications to a base level rather than to individual infected device IPs; it also needed to ingest blacklisting feeds mandated by other agencies.

Infoblox deployed 36 Infoblox 4010 appliances running DNS Firewall at regional boundaries and Grid Masters, leveraging the agency’s existing Infoblox Grid infrastructure and threat feeds. The solution blocks and redirects outbound communications to command-and-control servers and botnets, allows external malware feeds to be incorporated into blacklists, and enables pinpointing, quarantining, and remediation of infected devices.