1 | 2013
2015 Infoblox Inc. All Rights Reserved.
Agenda
1
2 The Grid
3 Advanced DNS Protection
DNS Firewall
Cloud Automation
2 | 2013
2015 Infoblox Inc. All Rights Reserved.
Network Automation
Infoblox
Applications
Infoblox DDI,
Trinzic Enterprise
Automate IP Mgt, DNS & DHCP
Communicate /
Take Action
Closed Loop
Automation
Infoblox NetMRI
Track and automate change
3 | 2013
2015 Infoblox Inc. All Rights Reserved.
Core Services:
DNS / DHCP / IPAM
Network
Routing, Switching
IT Analyst Validation
Gartner: usage of a commercial
DDI solution can reduce (network)
OPEX by 50% or more.
IDC: Infoblox is the only major DDI vendor
to gain market share over the
past three years.
Gartner: Infoblox has the highest degree
of visibility in the market shows up on
nearly all client shortlists, and is commonly
perceived as the market leader.
4 | 2013
2015 Infoblox Inc. All Rights Reserved.
Worldwide DDI
Market Share 2013
Security
Efficiency
Are We Nimble
Enough?
Are We Protecting
the Business?
Can We Shift $$ to
Strategic Projects?
5 | 2013
2015 Infoblox Inc. All Rights Reserved.
6 | 2013
2015 Infoblox Inc. All Rights Reserved.
Barriers to Success
Security
Automation
7 | 2013
2015 Infoblox Inc. All Rights Reserved.
1.
Secure
2.
Control
3.
Automate
8 | 2013
2015 Infoblox Inc. All Rights Reserved.
Security Vulnerabilities
Hacks of DNS server
External attacks (DNS DDoS)
Malware inside network
INTERNET
Management Silos
Multiple points of management
Multiple data silos
Single Points of Failure
FIREWALL
DMZ
BIND DNS
AMERICAS
INTRANET
Vulnerable
MICROSOFT
DNS
BIND DNS
APJ
BIND DNS
EUROPE
Vulnerable
MICROSOFT
DHCP
DENVER
APPS &
END-POINTS
Vulnerable
Vulnerable
Vulnerable
APPS &
END POINTS
9 | 2013
2015 Infoblox Inc. All Rights Reserved.
MICROSOFT
DNS
Vulnerable
MICROSOFT
DHCP
MICROSOFT
DNS
MICROSOFT
DHCP
TOKYO
LONDON
Vulnerable
(Malware)
VIRTUALIZATION &
PRIVATE CLOUDS
DMZ
INTERNET
EXTERNAL
DNS
EXTERNAL
DNS
(2) Control
! Highly efficient, centralized control
! ONE authoritative IPAM data source
INTRANET
IPAM
APPS &
END-POINTS
INTERNAL
DNS & DHCP
DENVER
APPS &
END POINTS
10 | 2013
2015 Infoblox Inc. All Rights Reserved.
INTERNAL
DNS & DHCP
TOKYO
(3) Automate
! DDI + Automation for
Virtualization & Hybrid Clouds
VIRTUALIZATION &
PRIVATE CLOUDS
SIMPLE
11 | 2013
2015 Infoblox Inc. All Rights Reserved.
SECURE
RELIABLE
12 | 2013
2015 Infoblox Inc. All Rights Reserved.
Grid
Master
Reporting
Member
Local
Member
Remote
Member
Virtual
Appliance
Member
Infoblox Grid
13 | 2013
2015 Infoblox Inc. All Rights Reserved.
Centralized
visibility
& control
Member
Infoblox
Grid
External DNS
Grid
Master
Member
Provides:
- Centralized visibility and control
- Real time IPAM & discovery
- Monitoring and reporting
- Failover and disaster recovery
for services, data & management
14 | 2013
2015 Infoblox Inc. All Rights Reserved.
Grid Master
Candidate
IPAM, DNS
DHCP, NTP
External DNS
Member
Member
Reporting
Member
Configuration Examples
14
15 | 2013
2015 Infoblox Inc. All Rights Reserved.
Virtual Grid
Member
Grid Master
Management
Interface
Virtual Grid
Member
VMWare
ESX / ESXi
Virtual Grid
Member
Infoblox
Grid
Virtual Grid
Member
Virtual Grid
Member
Grid Master Candidate
Agent-less
Microsoft
DNS / DHCP
Microsoft
DNS / DHCP
16
Virtual Appliances
Headquarters
Branch
Offices
PT-4000
PT-2200
Edge/Remote
Locations
ND-4000
Trinzic Reporting
PT-1400
ND-2200
Trinzic 4030
ND-1400
Trinzic 4010
Network
Automation
4000
Trinzic 2220
ND-800
Trinzic 100
!
!
!
!
Trinzic 2210
Trinzic 1420
Network
Automation
2200
Trinzic 1410
Trinzic 820
Trinzic 810
17 | 2013
2015 Infoblox Inc. All Rights Reserved.
Network
Automation
1400
IP Address
Management (IPAM)
Network
Automation
Infoblox DDI:
(DNS, DHCP, IPAM)
IPAM
NetMRI
Network Insight
Automation Change
Manager
Security
Subscriptions
DNS
Firewall-FireEye Adapter
Infoblox Grid
Real-time Network Database
18 | 2013
2015 Infoblox Inc. All Rights Reserved.
IP Address
Management (IPAM)
Network
Automation
Infoblox DDI:
(DNS, DHCP, IPAM)
IPAM
NetMRI
Network Insight
Automation Change
Manager
Security
Subscriptions
DNS
Firewall-FireEye Adapter
Infoblox Grid
Real-time Network Database
19 | 2013
2015 Infoblox Inc. All Rights Reserved.
20 | 2013
2015 Infoblox Inc. All Rights Reserved.
The Position
The Problem
DNS-based attacks
are on the rise
Traditional
protection is
ineffective against
evolving threats
DNS is the
cornerstone of the
Internet, used by
every business and
government
DNS protocol is
stateless and hence
vulnerable
DNS as a protocol
is easy to exploit
DNS amplification,
Spoofed SYN,
Spoofed UDP
HTTP+ proxy support
DNS is #2
Legitimate Traffic
Infoblox
Threat-rule Server
Automatic
Threat-rules
updates
New
Infoblox Advanced
DNS Protection
(External DNS)
New
Grid-wide rule
distribution
GRID Master
Send reports
Infoblox Advanced
DNS Protection
(Internal DNS)
Management
Interface
Reporting
Server
TCP/UDP/ICMP floods:
DNS amplification:
Protocol anomalies:
DNS tunneling:
Top
DNS
attacks
DNS hijacking:
Reconnaissance:
DNS reflection/DrDos:
Fragmentation:
Phantom Domain:
NXDOMAIN:
29 | 2013
2015 Infoblox Inc. All Rights Reserved.
DNS reflection
DNS-based exploits
DNS amplification
TCP/UDP/ICMP floods
DNS tunneling
NXDOMAIN attack
Protocol anomalies
Reconnaissance
DNS hijacking
Volumetric/DDoS Attacks
DNS-specific Exploits
32 | 2013
2015 Infoblox Inc. All Rights Reserved.
33 | 2013
2015 Infoblox Inc. All Rights Reserved.
34 | 2013
2015 Infoblox Inc. All Rights Reserved.
35 | 2013
2015 Infoblox Inc. All Rights Reserved.
36 | 2013
2015 Infoblox Inc. All Rights Reserved.
INTERNET
Advanced DNS
Protection
Advanced DNS
Protection
DMZ
INTRANET
Grid Master
and Candidate (HA)
Data Center
Internal DNS
Protection against Internal Attacks on Recursive Servers
INTRANET
GRID Master
and Candidate (HA)
Reporting
Data Center
Advanced DNS
Protection
- Campus office
- Regional office(s)
- Disaster recovery site(s)
Advanced DNS
Protection
Endpoints
Advanced DNS Protection can secure internal DNS environments where internal
user traffic is hostile
38 | 2013
2015 Infoblox Inc. All Rights Reserved.
Note: Customers who have IB-4030 Rev2 just need to purchase the Advanced DNS Protection service
DCA
4-BIND Cached
Response
Yes
3-DCA Cached
Response
ADP
Yes
BIND
Cached
?
No
DCA
Cached
?
No
No
Yes
Smart NIC
6-Recursion
No
1- DNS Query
Threat
Rule
Match
?
BLKLIST
Match?
Yes
2-Drop/Rate Limit
Internet
7-Response
ADP
Client
NXDR
Match?
Yes
Yes
No
8-Drop/Rate Limit
DFW
Match?
No
9-Recursive Response
Host Appliance
40 | 2013
2015 Infoblox Inc. All Rights Reserved.
41 | 2013
2015 Infoblox Inc. All Rights Reserved.
Infoblox
Advanced
Load
Balancers
Pure
DDoS
NGFW
IPS
Cloud
Automatic Rules
update
Automatic
updates
DNS
BIND Engine
42 | 2013
2015 Infoblox Inc. All Rights Reserved.
BAD Traffic
43 | 2013
2015 Infoblox Inc. All Rights Reserved.
Legitimate Traffic
Grid
Master
Infoblox
Advanced DNS
Protection
(External DNS)
Grid-wide rule
distribution
Infoblox Advanced
DNS Protection
(Internal DNS)
Data for
Reports
Automatic Updates
(Threat Rules)
Management
Interface
Reporting
Server
Reports on attack types, severity
44 | 2013
2015 Infoblox Inc. All Rights Reserved.
Traffic Capture
Capture traffic in front of the DNS
(PCAP) to be analyzed in the
Infoblox Labs
Off-Line
Deploy ADP on a SPAN port with
live DNS traffic. ADP will configure
MAC Address of customers DNS,
resolve and generate reports on
attacks found
45 | 2013
2015 Infoblox Inc. All Rights Reserved.
Query
Response
Internet
LAN1
Switch
Grid
Advanced DNS
Protection
Reporting
Grid Master
DNS
Management
Interface
46 | 2013
2015 Infoblox Inc. All Rights Reserved.
46
Traffic Capture
Traffic Capture
Capture traffic (PCAP) in front of the
External DNS to be analyzed in the
Infoblox Labs
We will run the same PCAP traffic in
our Lab and return all valuable
results in a structured document
47 | 2013
2015 Infoblox Inc. All Rights Reserved.
Caching
DNS
LAN2
Span4Port
Switch
LAN1
Grid
Advanced DNS
Protection
Reporting
Query
Response
Grid Master
Clients
Internal Network
48 | 2013
2015 Infoblox Inc. All Rights Reserved.
Management
Interface
48
Response
Query
Internet
LAN1
Switch
SPAN4Port
LAN2
Grid
Advanced DNS
Protection
Reporting
Grid Master
Caching
DNS
Management
Interface
49 | 2013
2015 Infoblox Inc. All Rights Reserved.
49
Advanced DNS
Protection
(External DNS)
Automatic Updates
(Threat Rules)
LAN1
Grid-wide rule
distribution
Grid
Data for
Reports
Grid
Master
MGMT
LAN1
Management
Interface
Reporting
Server
Reports on attack types, severity
51 | 2013
2015 Infoblox Inc. All Rights Reserved.
Next Steps
Request the free POC
https://www.infoblox.com/downloads/
software/advanced-dns-protection-trial
52 | 2013
2015 Infoblox Inc. All Rights Reserved.
53 | 2013
2015 Infoblox Inc. All Rights Reserved.
Startling statistics
10,000,000
8,000,000
6,000,000
4,000,000
2,000,000
Q1
Q2
Q3
Q4
Q1
Q2
Q3
Q4
Q1
Q2
Q3
2010 2010 2010 2010 2011 2011 2011 2011 2012 2012 2012
20,000
15,000
10,000
5,000
* Source: McAfee Threats Report: Third Quarter 2012
** Source: Verizon Security Study 2012
54 | 2013
2015 Infoblox Inc. All Rights Reserved.
0
2004
2005
2006
2007
2008
2009
2010
2011
2012
54
$300 Million
Stolen
55 | 2013
2015 Infoblox Inc. All Rights Reserved.
57 | 2013
2015 Infoblox Inc. All Rights Reserved.
Infoblox Malware
Data Feed Service
4
2
Malicious
domains
Malware /
APT
Internet
Intranet
Infoblox DDI
with DNS
Firewall
Blocked attempt
sent to Syslog
1
2
IP address
MAC address
Device type (DHCP fingerprint)
Host name
DHCP lease history
C & C / Proxy
Portal IPs
Reputational Feed
from Infoblox
5
Ips/Domains/etc.
of bad servers
Compromised
Web Server or
Domain
13.13.13.13
12.12.12.13.
INTERNET
DNS Server W/
DNS Firewall
FireEye
2
Play Malware
Attack
e&
nam ss
n
i
a
e
Dom IP addr
t
s
e
o
k d
H
bloc
e
b
to
INTRANET
59 | 2013
2015 Infoblox Inc. All Rights Reserved.
4
Infoblox Reporting
Server ID infected
device by IP, MAC
address & device type
Infected
Enterprise
End-point
Block / Re-direct
DNS Query
for remediation
Malware / apps
Initiate DNS requests
for web domains
Malware
Droppers
External Feed:
Legge Gentiloni
Botnet C&C /
DNS Servers
RPZ data
pushed thru
signed XFR
Infoblox
Malware Data
Feed Service
Inbound
Attacks
Geographic
Blocks
60 | 2013
2015 Infoblox Inc. All Rights Reserved.
Infoblox
DNS Firewall
24/7 service
Data from over 35 different public and
proprietary sources 7 feed types
Incremental threat data changes are
pushed every 2 hours
Significant threats cause immediate
updates (notify)
Mitigation performed
(e.g., Redirect, Block, or
Pass)
Lease history by MAC
address & OS Fingerprint
via drilldown option
61 | 2013
2015 Infoblox Inc. All Rights Reserved.
62 | 2013
2015 Infoblox Inc. All Rights Reserved.
zumbapolska.com
becomes NXDOMAIN
63 | 2013
2015 Infoblox Inc. All Rights Reserved.
64 | 2013
2015 Infoblox Inc. All Rights Reserved.
65 | 2013
2015 Infoblox Inc. All Rights Reserved.
Solution Components
" Product License (cost based on appliance model)
" Malware Data Feed from Infoblox (optional annual subscription)
" Infoblox GridTM
PREVENTIVE
TIMELY
TUNABLE
Prevents
malware
infection and
execution
Leverages high
quality Malware
Data Feed
updated in near
real time
Maximizes
potency against
malware
worldwide
66 | 2013
2015 Infoblox Inc. All Rights Reserved.
67 | 2013
2015 Infoblox Inc. All Rights Reserved.
68 | 2013
2015 Infoblox Inc. All Rights Reserved.
Infected
Client
4
Landing Page /
Walled Garden
Link to malicious
www.badsite.com
Contact botnet
3
Dynamic Grid-Wide
Policy Distribution
Apply Policy
Block / Disallow
session
1 Dynamic Policy
Update
69 | 2013
2015 Infoblox Inc. All Rights Reserved.
Write to Syslog
and send to
Trinzic Reporting
Traffic Capture
Capture traffic in front of the DNS
(PCAP) to be analyzed in the
Infoblox Labs
Off-Line
Deploy DFW on a SPAN port with
live DNS traffic. DFW will configure
MAC Address of customers DNS,
resolve and generate reports on
Malware/Botnet/APT found
70 | 2013
2015 Infoblox Inc. All Rights Reserved.
Internet
Internal
DNS
LAN1
LAN2
Grid
DNS Firewall
Grid Master
Reporting
Query
Response
Switch
vAPP4on44
VMWare4vCenter
Clients
Management
Interface
Internal Network
71 | 2013
2015 Infoblox Inc. All Rights Reserved.
71
Traffic Capture
Traffic Capture
Capture traffic (PCAP) in front of the
Internal DNS to be analyzed in the
Infoblox Labs
We will run the same PCAP traffic in
our Lab and return all valuable
results in a structured document
72 | 2013
2015 Infoblox Inc. All Rights Reserved.
Internal
DNS
vAPP4on44
VMWare4vCenter
LAN2
Span4Port
LAN1
DNS Firewall
Grid Master
Reporting
Query
Response
Switch
Grid
Clients
Management
Interface
Internal Network
73 | 2013
2015 Infoblox Inc. All Rights Reserved.
73
POC vAPP shipped with temp license and feed activation (Public IP
registration required). License expiration: 60 days
POC is a vAPP for vCenter including a virtual DNS Firewall, also Grid
Master, and a virtual Reporting Server
74 | 2013
2015 Infoblox Inc. All Rights Reserved.
Next Steps
Download the free POC
https://www.infoblox.com/catchmalware
75 | 2013
2015 Infoblox Inc. All Rights Reserved.
76 | 2013
2015 Infoblox Inc. All Rights Reserved.
4
3
DNS for
abc.com
Connect to DC1
gslb.myapp.abc.com
GSLB
DC1
Web/App Server
(myapp.abc.com)
DC2
Web/App Server
(myapp.abc.com)
77 | 2013
2015 Infoblox Inc. All Rights Reserved.
IT Networking Challenge
Availability
Service Optimization
Provide 100%
availability of
internet facing
services
Optimize
performance by load
balancing
application requests
78 | 2013
2015 Infoblox Inc. All Rights Reserved.
80 | 2013
2015 Infoblox Inc. All Rights Reserved.
100%
100%
50%
Automated health-check
Performs health check against load balanced
resources
5
1
myapp.abc.com
(201.10.0.1)
myapp.abc.com
(101.10.0.1)
Health Check
2&3
Health Check
82 | 2013
2015 Infoblox Inc. All Rights Reserved.
Resource
Pool A
Global Availability
Clients are directed to the first resource in a list, i.e. a resource pool. Only if
the first resource becomes unavailable then DNS Traffic Control directs clients
to the next resource in the list.
Ratio
Clients are directed to servers in a pool or among pools (in a multiple pool
configuration) using weighted round robin.
Topology
DNS Traffic Control uses predefined geo mapping and other user-defined
source IP/subnet-based mapping to adjust the response to a query.
Health Monitors
HTTP/HTTPS
TCP
SIP
The SIP monitor determines the health of a SIP server by issuing SIP options
to the server and examining the returned code received from the server.
Supports the following transports: TCP, UDP, TLS, SIPS
PDP
Validates the health of a server by sending a fixed GTP ECHO. Receiving any
ECHO response constitutes success.
ICMP
83 | 2013
2015 Infoblox Inc. All Rights Reserved.
Use Cases
Infoblox DNS Traffic Control
DC Disaster Recovery
Load Balancing Requests
Geo Location
Internal server balancing and failover
DNS views for records
84 | 2013
2015 Infoblox Inc. All Rights Reserved.
Policy:
Direct all requests originating from U.S to
SJ or SF using Round Robin
Direct all request originating from ROW to
Paris or London using Round Robin
Clients
x.abc.com
101.10.0.1
x.abc.com
201.10.0.1
Site 2 (London)
1
Local Load
Balancer
VIP =100.10.0.1
85 | 2013
2015 Infoblox Inc. All Rights Reserved.
Health Check
x.abc.com
Ib_ld_.abc.com
Local Load
Balancer
VIP =200.10.0.1
x.abc.com
Policy:
Direct all requests originating from U.S
to SJ or SF using Round Robin,
Direct all request originating from ROW to
Paris or London using Round Robin
Client 2
Client 1
x.abc.com
101.10.0.1
2
3
x.abc.com
201.10.0.1
Site 2 (London)
Ib_sf.abc.com
Health Check
Local Load
Balancer
VIP =100.10.0.1
86 | 2013
2015 Infoblox Inc. All Rights Reserved.
x.abc.com
Ib_ld_.abc.com
Local Load
Balancer
VIP =200.10.0.1
x.abc.com
Sydney, Au
Clients
2
x.abc.com
101.10.0.1
x.abc.com
201.10.0.1
Ib_sf.abc.com
Site 2 (London)
1
Local Load
Balancer
VIP =100.10.0.1
87 | 2013
2015 Infoblox Inc. All Rights Reserved.
Health Check
x.abc.com
Ib_ld_.abc.com
Local Load
Balancer
VIP =200.10.0.1
x.abc.com
Descriptions: The health check monitors validates the health of a service by first
sending a specific message to a server and then examining the response received from
the server. The validation is successful if the received response matches the expected
message.
Interval
Timeout
Retry up counts
Http Request
Client Certificate
Ciphers
Port
TCP:
Port
88 | 2013
2015 Infoblox Inc. All Rights Reserved.
Infoblox Advantages
Availability
Control
Performance
Security
89 | 2013
2015 Infoblox Inc. All Rights Reserved.
Licensing Strategy
Requires NIOS 7.0 or higher
Enables:
New Licenses
(DTC)
Licensing
Packages
Platform
Supportability
90 | 2013
2015 Infoblox Inc. All Rights Reserved.
91 | 2013
2015 Infoblox Inc. All Rights Reserved.
Market Dynamics:
Private Clouds Deployments on the Rise
IT Departments Increasingly Want Their Own
Amazon-like Cloud In-househere is why:
IT & Business
Agility
92 | 2013
2015 Infoblox Inc. All Rights Reserved.
Cost Savings
Commodity gear
Better utilization
LOB Productivity
93 | 2013
2015 Infoblox Inc. All Rights Reserved.
Reality
Slow with manual processes
Measured in hours, days or
weeks
Provision
Virtual
Instance
Request IP
or Use
Allotment
Forward IP
Data for
Tracking
1
Automated
Update
Database or
Spreadsheet
Request
DNS
Record
Allocate
and Manually
Enter DNS
Clean Up
When
De-provisioned
Manual
94 | 2013
2015 Infoblox Inc. All Rights Reserved.
95 | 2013
2015 Infoblox Inc. All Rights Reserved.
OpenSource:
OpenStack
Commercial:
VMware vCAC, MS SC/VMM
Cloud Network
Automation
Management UI
Infoblox Adapters
VMware/Microsoft/OpenStack
Hypervisors
VMware ESXi / MS Hyper-V
Network Functions:
Routing, switching,
firewalls, load-balancers
Compute
Storage
Network
Infoblox DNS/DHCP/IPAM
Core Network Services
Physical Infrastructure
Infoblox Cloud Network Automation helps you get more agility, scale and
reliability from your clouds with fewer human resources.
96 | 2013
2015 Infoblox Inc. All Rights Reserved.
Grid Master
Internal
DNS
Corporate
Wide DNS
Grid Member
Grid Member
DHCP
DHCP
Grid Member
VMs
Private Cloud
Data Center 1
97 | 2013
2015 Infoblox Inc. All Rights Reserved.
Internal
DNS
VMs
Private Cloud
Data Center 2
Reporting
Grid Master w/
id Server
Master Cloud Network Automation
Internal
DNS
New
New
Corporate
Wide DNS
Cloud Platform
Appliance
Internal
DNS
Cloud Platform
Appliance
New
DHCP
DHCP
Cloud Platform
Appliance
VMs
Private Cloud
Data Center 1
98 | 2013
2015 Infoblox Inc. All Rights Reserved.
New
VMs
Private Cloud
Data Center 2
Cloud-focused discovery
and visibility
Integrated adapters
99 | 2013
2015 Infoblox Inc. All Rights Reserved.
100 | 2013
2015 Infoblox Inc. All Rights Reserved.
CMP/Orchestrator
Infoblox
Adapter
3 - Infoblox Adapter
contacts NIOS via WAPI
for Next Available IP and
creates DNS Records
for VM
Hypervisor
6 - VM starts up
either with
injected static IP
or IP allocated via
DHCP Request to
Member (Fixed
Address)
5 CMP/Orchestrator
Spins up VM on
Hypervisor
Infoblox Grid Member
DNS/DHCP
101 | 2013
2015 Infoblox Inc. All Rights Reserved.
4 - GM synchronizes
Host record or Fixed
Address + A/AAAA/PTR
with Grid Member
Infoblox Adapter
Reporting
Server
API
Grid Master
Grid
Member
Grid
Member
Grid
Member
DDI Service
IP
IP
Project 9
IP
DDI Service
IP
IP
IP
Project 10
102 | 2013
2015 Infoblox Inc. All Rights Reserved.
DDI Service
IP
IP
Project 11
IP
Multi-vendor
Cloud
Integration
Enhanced
and
Extended
Visibility
Auditing and
Compliance
Centralized
and
Integrated
Management
Always On
Core
Network
Services
103 | 2013
2015 Infoblox Inc. All Rights Reserved.
Provision
Virtual
Instance
Request IP
or Use
Allotment
Forward IP
Data for
Tracking
Update
Database or
Spreadsheet
Automated
Automated
4
Manual
Provision
Virtual
Instance
Request
DNS
Record
Automated
104 | 2013
2015 Infoblox Inc. All Rights Reserved.
Allocate
and Manually
Enter DNS
Clean Up
When
De-provisioned
105 | 2013
2015 Infoblox Inc. All Rights Reserved.
Infoblox NetMRI
The way to active DDI
Infoblox NetMRI
Network discovery and inventory
Monitor and track changes
Switch Port Management
Proactive Check against best practices
Proactive Check against security policies
Automate change in lock step with DDI
Automatic VRF detection and handling
106 | 2013
2015 Infoblox Inc. All Rights Reserved.
Infoblox DDI
Automation
106
Built-in compliance & policy reports (PCI, ISO, SOX, HIPAA, DISA, NSA, STIG etc.
Powerful and easy-to-use design studio form internal, multi-vendor requirements
Hundreds of embedded, documented policy rules for easy re-use and customization
Quickly identifies network elements failing policies
Reports
Rich set of predefined reports for practical information extraction
Easy to create reports to obtain data in customized format
107 | 2013
2015 Infoblox Inc. All Rights Reserved.
108 | 2013
2015 Infoblox Inc. All Rights Reserved.
108
Once ability
Easy
the issue
to select
is identified,
individual
theissues
autoand drill down
remediation
options
for more
greatly
detailed
reduce time
information
to
resolve
109 | 2013
2015 Infoblox Inc. All Rights Reserved.
109
110
111
112
Packaging
" Standalone
" ACM (Automated Change Management)
" NetMRI
113 | 2013
2015 Infoblox Inc. All Rights Reserved.
113
VMWare
ESX / ESXi
114 | 2013
2015 Infoblox Inc. All Rights Reserved.
114
115 | 2013
2015 Infoblox Inc. All Rights Reserved.
About Infoblox
Total Revenue
Founded in 1999
Headquartered in Santa Clara, CA
with global operations in 25 countries
Leader in securing and automating
mission-critical network services
Market leadership
DNS, DHCIP, IPAM (DDI) Market
Leader (Gartner)
50% DDI Market Share (IDC)
8300+ customers
89,000+ systems shipped to 100
countries
63 patents, 25 pending
IPO April 2012: NYSE BLOX
116 | 2013
2015 Infoblox Inc. All Rights Reserved.
($MM)
$350
306
$300
250
$250
225
$200
169
$150
133
102
$100
$50
56
62
FY08
FY09
35
$0
FY07
FY10
FY11
FY12
FY13
FY14
FY 15
117 | 2013
2015 Infoblox Inc. All Rights Reserved.
Giancarlo Palmieri
Infoblox Pre-Sales Engineer
Mob: +39 335 789 3463
Email: gpalmieri@infoblox.com
118 | 2013
2015 Infoblox Inc. All Rights Reserved.