Cisco Firepower Threat Defense (FTD)

Chapter 17Blocking a Domain Name System (DNS) Query

Attackers often send phishing emails with links to malware websites. A user in your network may be deceived by the hoax content and click on an obfuscated link by mistake. Firepower can intelligently prevent a user from accessing a malicious website by blocking its DNS query—one of the first things a client computer performs to access a website. This chapter describes the implementation of a DNS policy on an FTD system.

Firepower DNS Policy Essentials

Before diving into DNS policy configuration, let’s take a look at how a host computer learns the IP address of a website through a DNS query and how a Firepower system can prevent a user from making a DNS query for a malicious domain.

Domain ...

Get Cisco Firepower Threat Defense (FTD) now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Cisco Firepower Threat Defense (FTD) by Nazmul Rajib

Chapter 17Blocking a Domain Name System (DNS) Query

Firepower DNS Policy Essentials

Domain ...

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly