Overview
Edge reduces your attack surface. For security architects and IT operations staff that need to limit access to sensitive data and lock down critical systems like cloud apps and services, Edge makes it easy to set policies and eliminate DNS as a threat vector against your AWS cloud environment. Ingest threat intelligence to block access to well-known bad domains.
Edge detects malicious behavior hidden in millions of DNS query and response activity. Cybersecurity teams seeking to detect and stop data exfiltration like tunneling, beaconing to C2 servers, or evasive techniques like domain generating algorithms (DGA) use Edge's smart analytics developed by BlueCat's decades of DNS expertise to spot malicious behavior among all DNS queries across their network.
Edge reduces time to respond and remediate breaches. For incident response teams faced with the challenge of uncovering the lateral spread of an infection and rooting out patient zero in a cyberattack, Edge makes it easy to pinpoint the origination and review the internal and external DNS activity surrounding an incident to reduce the time to resolution.
Edge enforces compliance easily and safely. IT Ops and network admins can easily set policy within Edge to comply with corporate, security or regulatory requirements. Capture DNS data and use Edge to automatically log all DNS queries, originating IP and domain response. For network teams wary of extending access to critical DNS infrastructure, Edge provides the necessary access without risk of disruption.
Edge integrates with leading SIEMS Integrate with SIEMs like QRadar, ArcSight, and Splunk with the new DNS Edge for Splunk App. Send DNS queries from Edge to correlate with other tool to substantiate findings with other security data and sources.
Highlights
- In a single setup, deploy any number of BlueCat Edge Service Points v4 sharing the same configuration.
Details
Pricing
Additional AWS infrastructure costs
Type | Cost |
---|---|
EBS General Purpose SSD (gp2) volumes | $0.10/per GB/month of provisioned storage |
Vendor refund policy
Legal
Vendor terms and conditions
Content disclaimer
Delivery details
64-bit (x86) Amazon Machine Image (AMI)
Amazon Machine Image (AMI)
An AMI is a virtual image that provides the information required to launch an instance. Amazon EC2 (Elastic Compute Cloud) instances are virtual servers on which you can run your applications and workloads, offering varying combinations of CPU, memory, storage, and networking resources. You can launch as many instances from as many different AMIs as you need.
Version release notes
What's new Support for fiber appliances Service Point v4.7.1 introduces support for BlueCat DNS/DHCP Server (BDDS) appliances with fiber networking configurations. Resolved issues HTTP proxy settings incorrectly overwritten Due to an issue with the library used for reading the HTTP proxy environment variables, the Service Point would incorrectly produce empty values for those proxy settings, resulting in communication issues between the Service Point and the Edge Cloud. This issue has now been resolved. Service Point times out when pulling a DRS image after 2 minutes Previously, the Service Point could time out and fail to pull a DNS Resolver Service image after 2 minutes. This issue has now been resolved and the time out period has been increased to 30 minutes. Service Point DSR VIP incorrectly responds to ARP requests Previously, the DSR VIP configured on a Service Point would respond to ARP requests, breaking the DSR load balancing with the load balancer. This issue has now been resolved. Service Point service might miss a heartbeat interval causing a DRS outage Previously, if the Service Point was under a high load, one of the Service Point services could miss a heartbeat interval, resulting in the service instance job shutdown and a DNS Resolver Service outage. This issue has now been resolved.
Additional details
Usage instructions
- In the Amazon AWS Console, navigate to your EC2 Dashboard, click Launch Instance, and select AWS Marketplace.
- Search for "BlueCat DNS Edge Service Point v4", select the image and click Select.
- Provide a name for your instance. Optionally, if you want to add a tag, add a key-value pair. For example, you might add the key ServicePointName with the value "your_service_point_name".
- Specify 1 as the Number of instances to deploy.
- For Instance Type, select one of the c5.xlarge, or c5.2xlarge, c5.4xlarge and click Next: Configure Instance Details.
- Click "Proceed without a key pair". Your ssh key will be configured with the SSH Public Key that was provided when creating a Service Point v4 in the DNS Edge Service Point v4 page.
- Select the automatically created security group. If you choose to create a new one, make sure inbound and outbound access is configured per the requirements listed in the BlueCat DNS Edge Service Point v4 Deployment Guide. When you are done, click Review and Launch.
- For Configuring Storage, add a new volume with 100 GiB of space on General Purpose SSD (GP2).
- Click Advanced Details and for User Data paste the contents of the configuration file that you downloaded from the DNS Edge Service Points v4 page, or choose the file. Make sure to select User data has already been base64 encoded. When you are done, click Launch instance.
Resources
Vendor resources
Support
Vendor support
For around the clock, year-round support, visit the BlueCat Customer Care Portal at https://care.bluecatnetworks.com 1.866.491.2228
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.