Skip to main content
Skip table of contents

Applying DNS Infrastructure Protection Profiles in NIOS (2548)

This lab requires a lab environment with DNS Infrastructure Protection capability!
Please ensure that you have deployed a NIOS 9.0 Lab Environment (with DNS Infrastructure Protection) lab environment.

Scenario

You are tasked with creating a new DNS Infrastructure Protection Profile named Authoritative – Initial Configuration. The profile will be assigned to all external-facing authoritative servers running DNS Infrastructure Protection in your organization to allow the sharing of a single tuned DNS Infrastructure Protection ruleset, instead of configuring each Grid member individually, simplifying management, ensuring consistency, and improving tuning accuracy.

Currently, your organization runs DNS Infrastructure Protection on extibns.techblue.net, with plans to add more servers in the near future.

Estimate Completion Time

  • 15 to 20 minutes

Prerequisites

Credentials

Description

Username

Password

URL or IP

Grid Manager UI

admin

infoblox

https://10.100.0.100/

Requirements

  • Administrative access to the Grid

  • Usage of the NIOS Lab Environment (DNS Infrastructure Protection) Lab environment

Tasks

Task 1: Create a DNS Infrastructure Protection Profile

Create a DNS Infrastructure Protection Profile named Authoritative – Initial Configuration, with default settings.

Task 2: Assign Profile to Grid Member

Assign the profile created in Task 1 to the Grid member extibns.techblue.net.

Solutions

Task 1 Solution: Create a DNS Infrastructure Protection Profile

In this task, we will be creating a DNS Infrastructure Protection profile named “Authoritative – Initial Configuration“. This profile will use the ruleset 20251209-16 as its baseline. 20251209-16 is the most recent ruleset downloaded to the Grid. The profile will be assigned to extibns.techblue.net in a later step.

  1. On the jump-desktop machine, open a browser window to https://10.100.0.100.

  2. Navigate to Data Management → Security → Profiles.

  3. Click the plus (+) symbol to add a new profile.

  4. Create a new profile named Authoritative – Initial Configuration.

  5. Click Override next to the Active Ruleset Version and select the oldest ruleset 20251209-16.

  6. Click Save & Close.

Task 2 Solution: Assign Profile to Grid Member

In this task, we will apply the previously configured profile “Authoritative – Initial Configuration“ to Grid member extibns.techblue.net.

  1. Navigate to Data Management → Security → Members.

  2. Select the extibns.techblue.net member and click Edit.

  3. Under the Basic tab of the DNS Infrastructure Protection section.

  4. Select the Use profile radio button.

  5. Click Select Profile and select the Authoritative – Initial Configuration profile.

  6. Click Save & Close to save the profile setting.

  7. Publish changes when prompted.

    1. Publishing involves applying new or updated rules and configurations, including profiles or downloaded rulesets, from the Grid Master to the Grid members.

  8. The External – Initial Configuration profile is listed for extibns.techblue.net

JavaScript errors detected

Please note, these errors can depend on your browser setup.

If this problem persists, please contact our support.

Contact Support Close