Security Engineer at a energy/utilities company with 501-1,000 employees
Real User
2022-11-23T20:46:00Z
Nov 23, 2022
The most valuable feature is blocklisting. It's good at what I like to describe as the "silly side cases." We have this annoying security architecture that says we must do this, that, and the other, so we try to make it easier on ourselves.
Virtualization/Datacenter Engineer at a healthcare company with 10,001+ employees
Real User
2021-10-19T17:45:00Z
Oct 19, 2021
Using the reporting, we can tell that we have gained an extra layer of protection. Just by looking at it, we can see what is being blocked before it even makes it to the firewall. It is definitely working.
Our ability to detect data exfiltration was minimal before Infoblox and the cloud portal was instituted for us. In terms of DNS security as a whole, we had some capability with our firewalls, but this is a lot more specialized because we're sending all of our DNS requests to Infoblox. I'd say we improved 100%.
Learn what your peers think about Infoblox BloxOne Threat Defense. Get advice and tips from experienced pros sharing their opinions. Updated: December 2024.
Network Engineer at a recruiting/HR firm with 10,001+ employees
Real User
2021-08-26T23:20:00Z
Aug 26, 2021
The automatic blocklists are most valuable. A box can maintain several lists from which we can choose if we need to block more or less. We don't have to manually manage the lists ourselves. They're automatically updated.
Senior Network Architect at a university with 10,001+ employees
Real User
2021-07-18T11:45:00Z
Jul 18, 2021
When it comes to helping to detect DNS threats, BloxOne is good on all fronts. The number of false positives is very low, close to none. More than once it has detected new names or lookalike names and protected us and saved us from bad characters.
IT Infrastructure Specialist Infrastructure Applications at a transportation company with 10,001+ employees
Real User
2021-06-16T09:54:00Z
Jun 16, 2021
BloxOne provides automatic sharing of network context data, which affects our speed of threat response and provide real-time threat intelligence. Our security operations needs this to do their work. It makes us feel safer.
Infoblox has helped us improve in the way that we look at data as it comes in and out. We monitor and manage queries from every device that sits inside our company, e.g., every user, every laptop, and every query. When you type something into the web, Infoblox will scan or manage that. If it is going somewhere bad, then it will block them. From a metrics perspective, it gives us data, letting us go back and find those impacted or infected clients to either clean their devices or remove them from the network.
Infoblox BloxOne Threat Defense strengthens and optimizes your security posture from the foundation up, giving you the visibility, control and automation to secure the hybrid workplace. Operating at the DNS level, BloxOne Threat Defense uncovers threats that other solutions do not and stops attacks earlier in the threat lifecycle. Through pervasive automation and ecosystem integration, it drives efficiencies in SecOps, increases the effectiveness of the existing security stack, secures...
The most valuable feature is policy redirecting and security reports.
The product is stable.
Infoblox BloxOne Threat Defense furthers the existing security posture rather than replacing or trying to replace any existing products.
The most valuable feature is blocklisting. It's good at what I like to describe as the "silly side cases." We have this annoying security architecture that says we must do this, that, and the other, so we try to make it easier on ourselves.
Using the reporting, we can tell that we have gained an extra layer of protection. Just by looking at it, we can see what is being blocked before it even makes it to the firewall. It is definitely working.
Our ability to detect data exfiltration was minimal before Infoblox and the cloud portal was instituted for us. In terms of DNS security as a whole, we had some capability with our firewalls, but this is a lot more specialized because we're sending all of our DNS requests to Infoblox. I'd say we improved 100%.
The automatic blocklists are most valuable. A box can maintain several lists from which we can choose if we need to block more or less. We don't have to manually manage the lists ourselves. They're automatically updated.
When it comes to helping to detect DNS threats, BloxOne is good on all fronts. The number of false positives is very low, close to none. More than once it has detected new names or lookalike names and protected us and saved us from bad characters.
The reporting ability is helpful. It allows us to control what our users are able to resolve, and then be able to see reports on that.
BloxOne provides automatic sharing of network context data, which affects our speed of threat response and provide real-time threat intelligence. Our security operations needs this to do their work. It makes us feel safer.
Infoblox has helped us improve in the way that we look at data as it comes in and out. We monitor and manage queries from every device that sits inside our company, e.g., every user, every laptop, and every query. When you type something into the web, Infoblox will scan or manage that. If it is going somewhere bad, then it will block them. From a metrics perspective, it gives us data, letting us go back and find those impacted or infected clients to either clean their devices or remove them from the network.
The dossier feature is perfect for starting an investigation.
The most valuable feature of this solution is the granularity for which you can categorize what you want to block versus what you don't want to block.
With the model we have, we are able to scale very easily if we need to.
The most important features for us are preventing DDOS DNS attacks.