Our Network Filtering solutions allow Service Providers and Enterprises to leverage Deteque’s (formerly Spamhaus Technologies) data to block outbound and inbound traffic to suspicious domains and IPs. Deteque provides the most comprehensive lists of malicious domains and IPs allowing you to protect your network from harmful threats.
DNS Response Policy Zone (RPZ) Service
Your DNS firewall, preventing connections to malicious domains and IP addresses
Deteque’s DNS Response Policy Zones (RPZs) list active malicious domains, low reputation domains (before they become active) and compromised IP addresses. It acts as your DNS firewall, preventing connections from malicious domains and IP addresses.
Online fraud, disruption and exploitation take many forms so Deteque’s RPZ zones are always evolving to take into account new types of threats and new ways cyber criminals abuse the DNS process.
With the RPZ Service deployed, the DNS processes is analyzed against Deteque’s RPZ zones to identify bad domains, addresses and nameservers. If an RPZ is triggered, the clients DNS server blocks the resolution to the site ensuring the end-user is protected against any threats.
DNS FIREWALL & RPZ DATA
“DNS RPZ provides a scalable, relatively low cost and effective mechanism for blocking malware and phishing on a corporate network where no existing layer 7 filtering mechanism is currently deployed.”
Block connections from malicious IP addresses at the network edge
Border Gateway Protocol (BGP) data feeds are an additional layer in your network security defenses, blocking connections to IPs involved in the most dangerous cybercrime and DDoS attacks.
By taking just a few minutes to configure your edge router to peer with Deteque you can provide your network with the most up-to-date protection against botnets, phishing and external attacks on your organization’s servers.
Global threat data that’s a powerful boost to your SIEM and security analysis
Passive DNS allows you to uncover patterns of malicious activity from networks across the world. Providing a constantly updated dataset showing in real-time which hostnames have been resolving to which IP addresses, and when. Data points are combined from around the world, giving you the power to build a picture of potential threats that cannot be seen from a single network providing global intelligence to secure your network.