What is DNS Filtering?
DNS filtering provides protection from online threats such as viruses, malware, ransomware, phishing attacks and botnets. The Domain Name System (DNS) makes it so that we can use the Internet by remembering names, and computers can translate these names into machine-readable IP addresses to transfer information from websites, email servers, and file servers to your web browser or email client. Passwords are hard enough to remember – imagine if we had to remember IP addresses instead of domain names. Even though the concept of DNS is simple to understand, you might have some misconceptions about DNS filtering that could affect getting it to work safely and reliably. So I’ll share with you the most common problems I’ve seen IT pros encounter while securing their DNS infrastructure throughout the years, and hopefully bust the most common myths at the same time.
Sure, but antivirus software can only detect known viruses while it’s running – and end users are notorious for turning off antivirus and the local firewall on their computers to avoid sluggish performance or install software that they “need” to do their job (or sometimes, really, to distract themselves from doing their job!). Managing this isn’t always as simple as enforcing domain policies – sometimes the culprits are in the executive suite. Bear in mind anti-virus cannot block content that isn’t infested with viruses but still isn’t appropriate for work, such as porn, gambling, politics, or social media. See where I’m going with this?
Small businesses can be (and many have been) crippled by copyright infringement suits – the business is liable for how its network is used. If an end user is serving up pirated movies from your IP address, can your business afford the fine? If an employee accidentally gets infected with a spam bot, it’s your IP address that will be blacklisted and blocked, and your email that will no longer be delivered.
Web-delivered malware can affect the entire business. If CryptoLocker or Petya or one of its ever-evolving variants destroys a shared drive containing overtime logs or customer invoices, who loses out? And there are other viruses that may be lurking undetected (Uroburos went undiscovered for years), silently stealing information or waiting to deliver a destructive payload.
Web filtering will not prevent all of these, but having multiple layers of security lowers the risk. What layers so you require?
You need web filtering, spam filtering, endpoint antivirus, sensible firewall rules, up-to-date software, regular reliable backups, and an aware workforce. Leaving a single door open makes all the rest of the locks pointless.
How does DNS filtering work?
Nope! It starts with DNS lookup in just three steps:
Once the DNS reply is received with the IP address of the domain name server, DNS is no longer involved in the communications between your browser (or other application software) and the server.
This process then provides an opportunity for using DNS as a very basic, low-latency (fast!), and low-bandwidth filter to protect users from phishing sites, botnets, and other risky websites – and a way to prevent access to inappropriate NSFW (not suitable for work) websites. By using a DNS filter with a database of categorized websites (if the DNS server/database is quick), you can be safe in the blink of an eye. The filter protects your network by only providing lookup requests with a valid IP address for safe websites, but returns a local IP address to deliver a block page for forbidden sites.
DNS logging will show which lookups people have performed, but not which sites they actually visited, nor for how long. For that level of detail, you’ll need a fast local proxy/filter to look at all of the actual web traffic. For most small-to-medium-sized businesses, I’m not going to lie, this is overkill. For larger organizations, there are often valid reasons for including a local web filter and proxy that justify the extra expense and IT personnel overhead, though.
In most cases, simply setting the primary DNS servers as the cloud web filter in your DHCP server (usually this is all in your Internet gateway appliance for a small business – which includes the router, network switch, and a firewall) is good enough to block the majority of web-delivered malware and prevent access to any productivity-killing (Facebook) and bandwidth-gobbling sites (YouTube, Netflix).
Include DNS filtering in your security arsenal – for web filtering, it’s such an easy and straightforward option. Most routers and firewalls will allow you to block port 53 – DNS traffic. By editing your internal MX records, a single configuration change in one place (on most small networks, it’s the router), you can effectively prevent access to risky sites and protect your network.
Now for some cold, hard truths. First, technology isn’t the only part of the solution to website access. An acceptable usage policy is also required. Bet you aren’t surprised by that? People should be informed ahead of time what is and isn’t allowed, and made aware of the consequences. They aren’t only risking their own jobs, but potentially putting every other employee and the business at risk.And secondly, the speed and performance of DNS servers can vary. Slow or poor domain resolution will result in slow and less reliable web browsing. However, you can run speed tests on DNS servers to compare performance.
How does DNS Filtering work?
WebTitan Cloud is our DNS based web filtering product that allows you to monitor, control, secure and protect your business from online threats. It’s based in the cloud, it’s easy to use and is priced competitively.
The two key functions of the product are – web security and web content control
How DNS Filtering works
A user types a URL into their browser, this request is sent to the WebTitan Cloud servers and based on a pre-defined policy, the request is allowed or blocked.
If the request is blocked the user is presented with a block page informing them why it was blocked. If the user is allowed they are passed on to the requested URL
Key Benefits of DNS Filtering with WebTitan
Block Malware & Malicious Sites
WebTitan Cloud blocks access to malware, ransomware, phishing attacks, viruses, malicious sites, spyware etc. It eliminates malicious content at the source.
Control Internet Access
WebTitan Cloud allows you to control internet access in your organisation at a granular level and from an easy to use management console.
Simple Set Up with Immediate Results
Requires no software installation and can be set up and operational in minutes.
Benefits of the Cloud
Deployed as a cloud based service this DNS based solution requires a simple DNS redirect to the WebTitan servers. This facilitates scale and eliminates latency
Key Features of DNS Filtering with WebTitan:
Filters URL’s into 53 predefined categories such as social media, news, pornography, gambling etc. The system contains over 500 million website addresses in 200 languages each sorted into predefined categories.
A bypass code that can be entered on the block page to allow a user bypass the block page and proceed to the requested website.
On The Go:
A windows based agent that when installed on a laptop ensures the user continues to use the WebTitan Cloud policy outside the office environment
A small locally installed virtual machine that integrates with Active Directory and allows per user reporting of internet activity
Extensive Web Filtering API:
Remote management and monitoring via API.
Different considerations and policies for different environments. Easily create and manage your own policy to protect users including whitelists and blacklists of URL’s and domains.
Renowned for our focus on supporting customers.
Access to a suite of over 50 predefined reports on user or group activity. These reports can be scheduled, or exported in multiple formats.
Multi Tenanted Platform:
Create new accounts easily and manage any number of locations.
Scalable & Fast:
Set up in minutes and managed from an intuitive web based interface.The solution can handle any volume of usage with no latency.
The WebTitan Web Filtering Service - DNS Filtering and Security
The benefits of using a DNS Filtering service are:
» Improves security by blocking access to malicious and risky websites
» Prevent malware downloads from malicious or hacked websites
» Keeps your defense up to date with targeted threat analysis and zero day updates to protect your customers as threats arise.
» Use policy-based controls to manage access with highly granular blocking and filtering
» Prevent users accessing material that could hinder productivity or cause offence.
» Use policy-based controls to manage access with highly granular blocking and filtering
WebTitan Cloud provides feature rich functionality allowing you protect users from malware, phishing and viruses as well as enforce internet usage policies, without the need for on-premises hardware or software. WebTitan Cloud offers you cloud based ONS Filtering to bring powerful enterprise filtering to all your users, regardless of their location. WebTitan Cloud eliminates browser latency while delivering secure and comprehensive web security to all your off-premises users.
Anti Malware Protection
WebTitan Cloud includes several categories of malware protection, blocking access to compromised websites, Spam based websites, Spyware and malicious websites.
WebTitan Cloud offers URL filtering of up to 53 predefined categories including 1 O's of millions of URL's which works in conjunction a cloud based look up and real time classification system to provide unmatched combination of coverage, accuracy and flexibility. Rest easy knowing your internet access is safe and secure.
How WebTitan Cloud Works - Easy Steps to DNS Filtering:
» Sign up for a free trial.
»We will create an account for you and send you your log on credentials.
»Log on and create your usage policy or use the default policy to start with.
»Redirect your ONS to our IP's. If you need help, our knowledgeable, responsive and friendly technical support team will guide you step by step.
Done! You're now completely set up on WebTitan Cloud.
The Three Tier Mechanism for filtering internet content at the DNS level
WebTitan Cloud uses a three-tier mechanism for filtering Internet content. The three tiers work together to maximize the company's defenses and prevent users accessing material that could hinder productivity or cause offence.
Tier 1 - SURBL & URIBL filters
Tier 2 - Category filters
Tier 3 - Keyword filters
WebTitan has lots more game changing features including:
Best-in-class malicious URL detection
Real time filtering
Extensive Web Filtering API
Malware & Phishing Protection
» We detect up to 60,000 malicious sites EVERY DAY
» Immediate updates
» Zero day updates to protect your customers as threats arise.
» No bandwidth limits, and No latency issues
There are different considerations for different environments so you need to have flexible policies. There are ALWAYS exceptions so a rigid approach for a wide range of customers will just not work.
» Single email address login access to a specific policy configuration
» Remote Management and Monitoring via AP
WebTitan will block access to malicious, hacked, or inappropriate websites. SSL supported
Try WebTitan Cloud for Free
If you would like to experience the benefits of ONS based web filtering for free, do not hesitate to contact us. We are offering companies the opportunity to try WebTitan Cloud or WebTitan Cloud for WiFi for free, with no set up costs or credit cards required, no contracts to sign, and no commitment to continue using our service at the end of the thirty-day trial period.
DNS Filtering Results
» WebTitan blocks 60,000 malicious sites per day
» That's 4 new ones per second/3 per employee per day
» EVERY employee comes across THREE malicious sites EVERY day.
» 100 employees= exposure to 1500 per working week.
AND this problem is growing
Sign-up for email updates...
Call us on USA +1 813 304 2544 or IRL +353 91 545555Contact Us