Home  |   Contact Us  |   Customer Login  |   Partner Login

 
Solutions
Products
Customers
Services & Tools
Support & Training
Partners
News & Events
Company
Library
   Language   
Products Overview
Product Finder
Software Packages
DNSone
DNSone with Grid
IPAM WinConnect
用于认证的网络服务
提供 VitalQIP(NSQ) 服务的
   网络服务套件
提供VoIP服务的网络服务
   套件
Network Services Suite
Appliance Platforms
Infoblox-250
Infoblox-550
Infoblox-1050
Infoblox-1550/1552
Infoblox-2000
Technologies
Grid Technology
Infoblox NIOS
Virtual Appliances
NIOS Software & Modules
DNS Module
DHCP Module
IPAM Module
NAC Foundation Module
RADIUS Module
Grid Module
Base Services
How to Purchase
Evaluation Request
 
DNS Module
The Infoblox DNS module provides high-performance, feature-rich DNS services that use the industry-standard BIND protocol engine modified to work with the bloxSDB database. This combination delivers the benefits of a proven protocol engine with the benefits of a sophisticated data subsystem ensuring transactional integrity to eliminate the data corruption, errors, and loss exhibited by flat-file systems.
FEATURES AND BENEFITS
Flexible Deployment: The Infoblox DNS module can be configured to support any role, including authoritative (primary), secondary, forwarding, and caching—all with high performance.

Reliable DNS Service: If DNS services are not available, the entire network is down. Therefore, this service must be available nonstop. bloxHA technology allows two appliances to be combined into an HA pair for reliable DNS service. If the active appliance fails, the passive appliance takes over and continues to provide DNS service in less than five seconds, without any loss or duplication of data. In addition, the unique combination of the DNS protocol engine and the bloxSDB database enables many changes—such as adding records to a zone—to occur without restarting services. This eliminates many of the service interruptions that occur when updating data in conventional BIND-based DNS servers.

Anycast: In order to achieve a globally distributed, highly-resilient DNS infrastructure, companies can use the Anycast feature to “advertise” a single IP address for DNS services that are served by multiple physical devices. The IP address is advertised via the OSPF routing protocol and is withdrawn from the routing table when DNS is not available. This provides global load distribution and automatically routes queries away from appliances that are out of service.

Real-time Updates:Dynamic DNS (DDNS) updates are replicated in real-time to all DNS servers in an Infoblox grid. No other DNS server available today provides real-time replication of DDNS updates. This is essential for network environments that require accurate DNS data for security reasons or for locating devices—like printers—on the network by a simple name.

GSS-TSIG:Dynamic DNS (DDNS) updates from Microsoft clients can be signed using GSS-TSIG with the client’s Active Directory credentials. The Infoblox DNS server accepts GSS-TSIG-signed DDNS updates and verifies the credentials against the credentials stored in Active Directory. This enables users to offload DNS from Microsoft Windows servers without compromising security. Infoblox offers the only appliance solution that supports GSS-TSIG.

Dual Stack IPv6 and IPv4 Support: The Infoblox DNS server provides support for native IPv6 and IPv4. IPv6 support includes both forward zone (AAAA) IPv6 DNS records and the ip6.arpa IPv6 DNS reverse zone. The DNS server with IPv6 networking support allows administrators to configure IPv6 addresses for Zone Transfers and Query Access Lists and will respond to both queries and zone transfers on the IPv6 address.

Single Graphical Application to Manage DNS Data and Services: The administration of DNS data can be securely delegated to administrators based on appliance, zone, and resource record type.

Zone Locking: Prevents administrative change collisions and enables multiple administrators to work simultaneously without causing unexpected or unpredictable results. When a zone is locked by an administrator, other administrators are prevented from making changes to that zone until it is unlocked. Unlike systems that can only lock on a global basis, the Infoblox zone Locking feature provides granular control and can lock at a zone level.

Hostname Templates: Administrators can enforce naming conventions by defining hostname templates that are applied on a grid, appliance, or zone basis. Administrators can also easily run reports to find and fix legacy records that don’t conform to a selected template.

Name Server Templates:This powerful feature enables administrators to propagate changes automatically to multiple zones on multiple appliances. For example, in a system with 500 zones that are served on 50 appliances, changing the IP address of a name server which is secondary for all zones—an operation that would require 25,000 changes with a conventional system—can be done with a single operation.

AVAILABILITY AND SOFTWARE PAckAGES
The DNS module is available in the software packages illustrated in the following chart:

DNS Technical Specifications

RFCs supported

1034 and 1035
Dynamic update, RFC 2136 Incremental zone transfer, RFC 1995
Notification of zone changes, RFC 1996
Secret key transaction authentication (TSIG), RFC 2845
Classless IN-ADDR.ARPA delegation, RFC 2317

Protocol engine

BIND 9.3.4

Additional
Capabilities

• Secure dynamic DNS updates using TSIG
• Conditional forwarding
• Microsoft Active Directory support
• Infoblox Views
• IP-address-based access lists on queries, zone transfers, and dynamic updates
• Zone import tools
• CustomizableTTL settings
 


 
© 2008 Infoblox Inc. All rights reserved. All registered trademarks are property of their respective owners. Privacy policy. Site Map.