Listing Thumbnail

    BlueCat DNS Edge Service Point v4

     Info
    AWS Free Tier
    According to industry research, 91% of malware uses the DNS protocol for command and control (C2), data exfiltration or to deliver malicious payloads. BlueCat Edge, via deployed Service Points v4, gives network and IT teams unprecedented access to DNS query data with which they can establish smarter policies, optimize traffic and meet stringent compliance and logging requirements.
    Listing Thumbnail

    BlueCat DNS Edge Service Point v4

     Info

    Overview

    Edge reduces your attack surface. For security architects and IT operations staff that need to limit access to sensitive data and lock down critical systems like cloud apps and services, Edge makes it easy to set policies and eliminate DNS as a threat vector against your AWS cloud environment. Ingest threat intelligence to block access to well-known bad domains.

    Edge detects malicious behavior hidden in millions of DNS query and response activity. Cybersecurity teams seeking to detect and stop data exfiltration like tunneling, beaconing to C2 servers, or evasive techniques like domain generating algorithms (DGA) use Edge's smart analytics developed by BlueCat's decades of DNS expertise to spot malicious behavior among all DNS queries across their network.

    Edge reduces time to respond and remediate breaches. For incident response teams faced with the challenge of uncovering the lateral spread of an infection and rooting out patient zero in a cyberattack, Edge makes it easy to pinpoint the origination and review the internal and external DNS activity surrounding an incident to reduce the time to resolution.

    Edge enforces compliance easily and safely. IT Ops and network admins can easily set policy within Edge to comply with corporate, security or regulatory requirements. Capture DNS data and use Edge to automatically log all DNS queries, originating IP and domain response. For network teams wary of extending access to critical DNS infrastructure, Edge provides the necessary access without risk of disruption.

    Edge integrates with leading SIEMS Integrate with SIEMs like QRadar, ArcSight, and Splunk with the new DNS Edge for Splunk App. Send DNS queries from Edge to correlate with other tool to substantiate findings with other security data and sources.

    Highlights

    • In a single setup, deploy any number of BlueCat Edge Service Points v4 sharing the same configuration.

    Details

    Delivery method

    Delivery option
    64-bit (x86) Amazon Machine Image (AMI)

    Latest version

    Operating system
    Debian 11

    Pricing

    BlueCat DNS Edge Service Point v4

     Info
    Pricing and entitlements for this product are managed outside of AWS Marketplace through an external billing relationship between you and the vendor. You activate the product by supplying an existing license purchased outside of AWS Marketplace, while AWS provides the infrastructure required to launch the product. Subscriptions have no end date and may be cancelled any time. However, the cancellation won't affect the status of an active license if it was purchased outside of AWS Marketplace.
    Additional AWS infrastructure costs may apply. Use the AWS Pricing Calculator  to estimate your infrastructure costs.

    Additional AWS infrastructure costs

    Type
    Cost
    EBS General Purpose SSD (gp2) volumes
    $0.10/per GB/month of provisioned storage

    Legal

    Vendor terms and conditions

    Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA) .

    Content disclaimer

    Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.

    Usage information

     Info

    Delivery details

    64-bit (x86) Amazon Machine Image (AMI)

    Amazon Machine Image (AMI)

    An AMI is a virtual image that provides the information required to launch an instance. Amazon EC2 (Elastic Compute Cloud) instances are virtual servers on which you can run your applications and workloads, offering varying combinations of CPU, memory, storage, and networking resources. You can launch as many instances from as many different AMIs as you need.

    Version release notes

    What's new Support for fiber appliances Service Point v4.7.1 introduces support for BlueCat DNS/DHCP Server (BDDS) appliances with fiber networking configurations. Resolved issues HTTP proxy settings incorrectly overwritten Due to an issue with the library used for reading the HTTP proxy environment variables, the Service Point would incorrectly produce empty values for those proxy settings, resulting in communication issues between the Service Point and the Edge Cloud. This issue has now been resolved. Service Point times out when pulling a DRS image after 2 minutes Previously, the Service Point could time out and fail to pull a DNS Resolver Service image after 2 minutes. This issue has now been resolved and the time out period has been increased to 30 minutes. Service Point DSR VIP incorrectly responds to ARP requests Previously, the DSR VIP configured on a Service Point would respond to ARP requests, breaking the DSR load balancing with the load balancer. This issue has now been resolved. Service Point service might miss a heartbeat interval causing a DRS outage Previously, if the Service Point was under a high load, one of the Service Point services could miss a heartbeat interval, resulting in the service instance job shutdown and a DNS Resolver Service outage. This issue has now been resolved.

    Additional details

    Usage instructions

    1. In the Amazon AWS Console, navigate to your EC2 Dashboard, click Launch Instance, and select AWS Marketplace.
    2. Search for "BlueCat DNS Edge Service Point v4", select the image and click Select.
    3. Provide a name for your instance. Optionally, if you want to add a tag, add a key-value pair. For example, you might add the key ServicePointName with the value "your_service_point_name".
    4. Specify 1 as the Number of instances to deploy.
    5. For Instance Type, select one of the c5.xlarge, or c5.2xlarge, c5.4xlarge and click Next: Configure Instance Details.
    6. Click "Proceed without a key pair". Your ssh key will be configured with the SSH Public Key that was provided when creating a Service Point v4 in the DNS Edge Service Point v4 page.
    7. Select the automatically created security group. If you choose to create a new one, make sure inbound and outbound access is configured per the requirements listed in the BlueCat DNS Edge Service Point v4 Deployment Guide. When you are done, click Review and Launch.
    8. For Configuring Storage, add a new volume with 100 GiB of space on General Purpose SSD (GP2).
    9. Click Advanced Details and for User Data paste the contents of the configuration file that you downloaded from the DNS Edge Service Points v4 page, or choose the file. Make sure to select User data has already been base64 encoded. When you are done, click Launch instance.

    Support

    Vendor support

    For around the clock, year-round support, visit the BlueCat Customer Care Portal at https://care.bluecatnetworks.com  1.866.491.2228

    AWS infrastructure support

    AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.

    Similar products

    Customer reviews

    Ratings and reviews

     Info
    0 ratings
    5 star
    4 star
    3 star
    2 star
    1 star
    0%
    0%
    0%
    0%
    0%
    0 AWS reviews
    No customer reviews yet
    Be the first to write a review for this product.