Infoblox BloxOne DDI Reviews

I am currently working with ServiceNow, and I use Infoblox BloxOne DDI for managing DHCP and DNS services. I can add, modify, or delete DNS services or DDI devices and manage all the devices within Infoblox BloxOne DDI. It primarily helps me manage the devices giving IPs to others on the network.

The most valuable features of Infoblox BloxOne DDI are its ability to manage all DDI services effectively and monitor them in real-time. If any DDI service goes down, it is easily detectable on the platform. I can also raise tickets with our L3 team for troubleshooting, which streamlines operations. Additionally, the ease of creating fixed IPs and containers for subnet management across different devices enhances its functionality.

We use our Infoblox DDI platform for everything: IPAM management, DNS, DHCP, and DNS firewall functionality with their BloxOne Threat Defense cloud. 

We see DNS as the first layer of defense, so we use all the features the platform offers. We do not have DNS and DHCP in our Windows environment anymore.

For network efficiency, having IPAM and DNS together provides a singular view of the network. We know what is active and what is registered in your DNS. We can manage external and internal DNS together on the same platform. 

The integrated view using IPAM and DNS is much simpler because Microsoft AD doesn't offer IPAM. It offers DNS, and it's scattered. This is the reason I like the power of the tool. 

It is costly but it provides the whole integration and allows us to automate a lot of things, like server builds and virtual machine builds. The powerful API Infoblox offers allows my automation team to integrate and query for free IPs within Infoblox, allocate a name, and register it. Full automation is possible on the platform. 

Also, the cloud licensing capabilities give you full visibility of what is happening in the cloud. Everything together, that's the power of the platform.

The automation capabilities have benefited the operations. People can make an API call to see the next free IP. Once they get an IP, they can register the DNS and build their server with the static IP. Then, they can assign the hostname directly through their scripting as soon as the server is live. It has benefited my automation team tremendously. 

They are constantly asking me when we can have this platform in other branches, entities, or data centers because the platform is more European-centric. They have similar requirements in America and other entities separate from AMG Securities. That's how powerful it is.

Compliance and Security

It is our first line of defense. If somebody clicks on a malicious link, the DNS will not resolve it because it will not resolve the name to the IP. This stops the threat in its tracks, so your second line of defense and third line of defense don't have to kick in. 

It actually prevents a lot of false alarms because if a link is blocked by antivirus, it creates an alert for the IT risk team to investigate. By not resolving the IP for a malicious link, it stops many issues before they escalate. This has improved our security posture significantly.

For customers in Indonesia, I have implemented it in BCA, Bank Central Asia, BGP, and Bank Server Banton, mostly in the banking sector. 

Primarily, I use it for DNS security, particularly to block domain generation attacks. These attacks can be internal or external, targeting DNS positioning or DNS from outside or within. This has been an effective measure.

The blocking features are crucial for security. A valuable feature is blocking domain generation, which automatically generates domains to protect the internal network. 

Additionally, I need to improve Clean DNS to prevent attacks effectively. Attacks already exist, and addressing them is important. This protection contributes to securing the network.