Products Firewalla Gold SE Firewalla Gold Pro Firewalla Gold Plus Firewalla Purple Firewalla Purple SE Firewalla Wi-Fi SD Product Comparison Product Reviews

DNS Tunneling - Detection and Prevention

Follow
Avatar
Braedach
  • Edited

Hello Firewalla crew.

I came across this little number in my reading list.

 

https://unit42.paloaltonetworks.com/dns-tunneling-in-the-wild/

Question

1. Would Firewalla detect this before we got to IOC stage

2. As far as i can determine even using the report functions in MSP this would be difficult to detect if the IOC was not  in the intelligence feed and it got past my DOH servers configured in FWG

Apparently this is a growing problem

Thoughts

Thanks

0

Comments

1 comment

Sort by Date Votes
  • Avatar
    DB

    I think as long as you have DOH servers configured to a known reliable DNS service and you are either a home or very small business owner, you will not have any issues with this.

    0
    Comment actions Permalink

Please sign in to leave a comment.

Didn't find what you were looking for?

New post