Infoblox IB-1852-GRID-UPG Datasheet

Brand: Infoblox

Model: IB-1852-GRID-UPG

Type: Datasheet

This manual is also suitable for

DATA SHEET

NS1 with Grid

™

Package

NS1 with Grid Advantages

• Resilientoperationagainstthe

failureofindividualappliances

• Easydisasterrecoverywith

nodatacorruption,errors,or

losstoensurecorenetwork

servicesavailability

• Simpliedandunied

managementofdevicesand

datawithreal-time,secure,

system-widedataupdates

• Intelligentauto-provisioning

foreasypre-stagingand

auto-recoveryofdevicesfor

effortlessupgrades

• Combinedmanagement

viewsandautomationoftasks

throughintegrationofDNSand

DHCPservices

• Industry-standardDNS

servicesusingthelatestBIND

implementation

• One-buttonsoftwareupgrades

thatmakeiteasytoaddnew

featuresandtoremainsecure

• Highavailabilitywithfast

networkfailoveranddatabase

synchronizationviabloxHA™

andbloxSYNC™technology

• Enhancedsecuritywith

DNSattackdetectionand

mitigationfeatures

• Securemanagementusing

SSL-basedVPNthatworksfrom

anywhere,throughanyrewall

• InfobloxViews—anenhanced

versionofBINDViews—that

providesvirtualDNSservices

andallowsasingleInfoblox

appliancetoresponddifferently

toDNSqueriesbasedonthe

sourceofthequery

• Built-inFTP,HTTP,andTFTP

serverfordistributingrmware

andcongurationlesto

networkdevices,suchasVoIP

phonesandwirelessaccess

points,duringthebooting

(start-up)process.

NS1withGridsoftwarepackageisavailableonallInfobloxapplianceplatforms.

Scalable, Integrated Management

TheNS1withGridpackagealsoincludestheGridupgradewhichprovidespatented

InfobloxtechnologyforlinkingdistributedappliancesintoauniedGrid.The

embeddeddatabasesinallInfobloxapplianceswithinaGridareintelligently

interconnectedsothattheyshareacommon,real-timeviewofhostnames,IPleases,

andothernetworkservicesdata.TheInfobloxGridusessecurecommunication

amongappliancesandalsousessophisticateddatabasetechnologytomaintaindata

integrity.ThisensuresthatallappliancesintheGridhavetherightdataandthatthe

Gridcontinuestodeliverserviceswithoutdatalossorcorruptioninthefaceofawide

rangeofdeviceorWANfailures.InfobloxGridtechnologyalsosupportsintelligentdata

replicationtominimizetheuseofbandwidthintheGridandtoenable“right-sized”

appliancestobedeployedateachlocation.

Features and Beneﬁts

TheNS1withGridpackagedeliversreliable,manageable,scalable,andsecurecore

networkservicesatalowercostandwithhighersecuritythanserver-softwareandwith

greaternetworkavailabilitythananyothersolution.TheservicesincludedintheNS1

withGridpackageare:

• NamingservicesviaDomainNameSystem(DNS);

• AddressingservicesviaDynamicHostCongurationProtocol(DHCP);

• NetworkvisibilityandcontrolviaIPaddressmanagement(IPAM);

• FiledeliveryservicesviaTrivialFileTransferProtocol(FTP,HTTP,TFTP);

• TimesynchronizationservicesviaNetworkTimeProtocol(NTP).

DATA SHEET

NS1 with Grid

™

Package

TheexibleInfobloxGridManageruserinterfaceprovidesthevisibilityandcontrol

neededtomanageallcorenetworkservicesindynamicIPnetworks.TheGridManager

consolidatesthemanagementofallappliances,services,anddata—andprovides

summaryanddrill-downviewswithasimpleclick.Granular,role-basedmanagement

capabilitiesenableadministratorstodelegatespecicnetworks,ranges,hosts,and

devicestojuniorordepartmentalpersonnel.TheInfobloxGridManagermakesit

easytocopewithfast-changingnetworks,andbecausealldataresideintheInfoblox

appliancedatabase,thestatusofdevicesandserviceswithintheGridManageralways

reectstheactual,real-timestateofthenetwork.

Manageappliances,services,anddatausingtheInfobloxGridManageracross

anyarchitectureorgeographicdistribution.

DATA SHEET

NS1 with Grid

™

Package

Additional Beneﬁts Include

High-availability Services: TheNS1withGridpackagerunsonthereliableInfoblox

applianceplatform,whichisdesignedfornonstopoperationinhigh-performance

networks.High-availability(HA)servicesaresupportedbybloxHA™technology—

whichusesindustry-standardVirtualRouterRedundancyProtocol(VRRP)forsub

5-secondnetworkfailover—andbloxSYNC™technologytoensurereal-timedatabase

synchronizationwithnolossorduplicationofdata.

Integrated, Zero-admin Database:TheNS1withGridpackagestoresallDNSandDHCP

dataintheintegratedbloxSDB™database,whichisbuiltintotheInfobloxNIOS™

operatingsystemsoftwareprovidedonallInfobloxappliances.ThebloxSDBdatabase

isdesignedspecicallytosupportintegratedcorenetworkservicesandprovides

unmatchedconsistencybetweenserviceandmanagementviewsofIP-address-centric

networkservicesdatawithoutcompromisingperformance.

Integrated Web GUI:TheInfobloxWebGUIallowsadministratorstodeployandmanage

theentireDNS,DHCPandIPAMinfrastructurewithjustafewmouseclicks.The

powerful,Web-basedInfobloxGUIistheonlysolutionthatmanagesallaspectsofthe

infrastructureanddata—includingsoftwareupdatesandupgrades,backupandrestore,

disasterrecoveryandallservicesanddatamanagement—withoutresortingtoclient

basedorcommand-lineinterfaces.TheInfobloxWebUImanagesallaspectsofthe

productincludingDNS,DNSSEC,DHCP,IPAMandGridmanagement,monitoringand

reporting.Wizardsandvisualtoolsareavailabletomakecongurationandmonitoring

error-free.

Integrated Management:TheNS1withGridpackageprovidespracticaloperational

efcienciesthatlowertotalcostofownership.Forexample,creatingaDHCPrange

automaticallycreatesanassociatedDNSrecord,reducingthenumberoftasksrequired

ofnetworkadministrators.

Granular, Role-based Administration:Role-basedadministrationisapowerfulway

toensurethatadministratorsareonlygivenaccesstoviewandmodifyspeciccore

networkservicesattributesconsistentwiththeirorganizationalandfunctionalrole.For

example,thismeansthataseniorDNSadministratorcouldhavetheabilitytodene

newdomainsandaddnewappliancestoaGrid,whileahelpdeskadministratormight

onlyhavetheabilitytoviewspecicsubnetsandissueIPaddressestonewdevicesby

pickingfromapre-denedlist.Infobloxhascreatedaveryscalable,yetverygranular

role-basedadministrationframework.Theframeworkprovidescustomerstheability

todelegateadministrationdowntotheobjectlevelandyetmaintainpermissionsfora

large,complexadministrationmodel.Somespecicsinclude:

DATA SHEET

NS1 with Grid

™

Package

• Easyworkowtomanagepermissions.Theadministratorcanquicklyset

permissionsbyright-clickingonanyobjecttobringupalistofpermissions.This

ismucheasierthanhavingtoswitchtoaseparateadministrationpanel.Italso

providesacomprehensivelistofwhichpermissionshavebeengrantedtoeach

administrationgroup.

• Administrationisalsoeasedthroughtheuseofroles.Rolescanbemappedto

anorganizationorjob(e.g.,PrinterAdmins,DNSAdmins)andthenrolescan

beassignedtoadministrativegroups.Thisabstractionmodelallowsasetof

permissionstobedenedonceanychangestotheroleareinheritedbyallgroups

thatareassociatedwithit.

Hardened Security: TheInfobloxNIOSTMsoftwareishardenedandconsistently

withstandssecurityscansandattackswithinthemostdemandinggovernmentand

militaryorganizations.DNSandDHCPservicescanbeupgradedeasilytosupportthe

latestversionsofBINDandDHCP,ensuringminimumexposuretosecuritythreats.In

theeventthatanewexploitisdiscovered,theunderlyingInfobloxNIOSsoftwarecanbe

upgradedinminutesviaasingle,simpleoperation.Thismakesitmuchmoredifcult

topenetratethangeneral-purposeoperatingsystemswithknownvulnerabilities.

ManagementcommunicationissecuredusingSecureSocketsLayer(SSL)-encrypted

VPNsforprotectionagainstmanagementcompromise.

DNS Attack Detection and Mitigation: Infobloxprovidestheabilitytodetect,alertand

mitigateanyattacksagainstmembersthatareconguredasrecursiveDNSservers.

TheNIOSsoftwarewillmonitortwokeyparametersthatareindicatorsofanattack:

mis-matchedDNSmessageIDsandmis-matchedUDPportsonDNSresponses.This

happenswhenanattackerisguessingonthoseparametersto“spoof”aresponsewith

thepoisoneddata.Theadministratorcansetathresholdforbothparametersandwhen

eitherisexceededthesystemwillsendanemailalertand/orSNMPtrap(whicheveris

conguredforthesystem).Thisfeaturewillgiveadministratorsanearlywarningthat

oneoftheirserversisunderattack.

Inaddition,InfobloxNIOSallowsattackmitigationbyimplementingqueryrate-limiting.

TheadministratorcanimplementalteronaspecicIPornetworktolimitorstopall

trafc.Thiswillslowdownorstoptheattack,thesuccessofwhichisbasedonthe

attacker’sabilitytotryasmanyresponse“guesses”aspossiblebeforethelegitimate

DNSservercanrespond.

One-Click DNSSEC: Infobloxhasa“one-clickDNSSEC”solutionthatautomatesthe

processesofsigningandmaintainingasignedzone.Thiseliminatesdozensoferror-

prone,manualoperationsandeliminatestheneedtowriteandmaintaincustom

scripts.KeygenerationisperformedautomaticallyusingDNSSECpropertiesspecied

attheGridorzonelevel;resourcerecordsignaturesaremaintained;and,zone

signingkeyrolloveroccursseamlesslyandautomaticallyaccordingtobestpractices

recommendedbytheNationalInstituteofStandardsandTechnology(NIST-800-81)and

RFC4641standards.

DATA SHEET

NS1 with Grid

™

Package

Nonstop Infrastructure for Critical Network Solutions

Infobloxnetworkservicesappliancesincludearangeofspecialcapabilitiesthatserve

keynetworkapplications:

Voice over IP

Usersdemanddial-tonereliabilityforvoicecommunications.Todeliverthislevel

ofreliabilityinanIPenvironmentrequiresanonstopDHCPserviceforassigningIP

addressestovoice-over-IPhandsetsandIPsoftphones,aswellasledeliveryservices

forprovidingupdatedphonermwareandcongurations.TheNS1packagedeliversa

combinationoffeaturesthatprovidesaneasy-to-manage,high-availabilitysolutionfor

IPvoiceapplications:

High-availability DHCP

Infobloxsupportsindustry-standardDHCPfailoverthatworksacrossdistributedWANs.

Inaddition,pairsofInfobloxappliancescanbeeasilyconguredin“HAmode”to

providefastfailoverandreal-timedatasynchronizationwithoutrequiringinefcient

allocationofIPaddresses.

Built-in TFTP, FTP, and HTTP

Historically,TFTPhasbeenprovidedbystand-aloneserversmanagedindividuallyat

eachlocationwithnocentralizedcontrolandnohigh-availabilitycapabilities.TheNS1

packageextendsthebenetsofnetworkservicesappliancestomanagingIPtelephony

byprovidingareliable,easy-to-manageTFTPservice.Firmwareandcongurationles

areuploadedtotheapplianceandservedtoIPphoneswhentheybootup.Added

reliability,expectedinatelephonyenvironment,canbeprovidedusinganHApairof

appliancestoprovidereliableTFTPservices.

Reliable DNS Infrastructure for Microsoft Active Directory (AD)

InfobloxisaMicrosoftGoldCertiedPartnerandthe

InfobloxNS1packageincludesspecialsupportforeasy

integrationintoMicrosoftADenvironments.Thisenables

enterprisestoensurethatthecriticalDNSservicesneeded

fortheirMicrosoftandnon-Microsoftapplicationsare

alwaysavailableandsecure.

DATA SHEET

NS1 with Grid

™

Package

Performance and Capacity Speciﬁcations

Infoblox-250-A Infoblox-550-A Infoblox-1050-A

Infoblox-

1550/2-A

Infoblox-1852-A Infoblox-2000

DNS Queries per Second

3,000 12,000 24,000 36,000 110,000 75,000

DHCP Leases per Second

25 75 150 225 225 750

DNS Technical Speciﬁcations

RFCs Supported

1034and1035

Dynamicupdate,RFC2136

Incrementalzonetransfer,RFC1995

Noticationofzonechanges,RFC1996

Secretkeytransactionauthentication(TSIG),

RFC2845

ClasslessIN-ADDR.ARPAdelegation,

RFC2317

Protocol Engine

BIND9.6.1

Additional

Capabilities

• SecuredynamicDNSupdatesusingTSIG

• Conditionalforwarding

• MicrosoftActiveDirectorysupport

• InfobloxViews

• IP-address-basedaccesslistsonqueries,

zonetransfers,anddynamicupdates

• Zoneimporttools

• CustomizableTTLsettings

DHCP Technical Speciﬁcations

RFCs Supported

RFCs3046,2131and1531

BOOTP,RFCs1534,2132,andRFC4388

Protocol Engine

DHCPD3.1

Additional

Capabilities

• VLSM(VariableLengthSubnetMask)

support

• CIDR(ClasslessInter-DomainRouting)

support

• Multiplesubnetspersegment

(supernetting)

• “Staticleases”basedonMACaddress

(manualallocation)

• MAC-address-basedltering

• Addressavailabilitycheckingbefore

assignment

• DHCPrelayagent/Option82support

• DHCPVendorClassIdentier/Option

60support

• SecureDHCP-DNSintegrationupdates

DNSwhenleasesareissued

• AdvancedDHCPOptionsEditor

• Windows,Unix,andMacOS

compatibility

• Externalsyslogserversupport

Infoblox Product Warranty and Services

Thestandardhardwarewarrantyisforaperiodofoneyear.Thesystemsoftwarehasa90-daywarrantythatwillmeetpublishedspecications.

Optionalserviceproductsarealsoavailablethatextendthehardwareandsoftwarewarranty.Theseproductsarerecommendedtoensure

theapplianceiskeptupdatedwiththelatestsoftwareenhancementsandtoensurethesecurityandavailabilityofthesystem.Professional

servicesandtrainingcoursesarealsoavailablefromInfoblox.Informationinthisdocumentissubjecttochangewithoutnotice.InfobloxInc.

assumesnoresponsibilityforerrorsthatappearinthisdocument.

Corporate Headquarters: +1.408.625.4200 1.866.463.6256 (toll-free, U.S. and Canada) info@infoblox.com www.infoblox.com

Infoblox IB-1852-GRID-UPG Datasheet

Brand: Infoblox

Model: IB-1852-GRID-UPG

Type: Datasheet

This manual is also suitable for

Download PDF

report

Infoblox IB-1852-GRID-UPG Datasheet

This manual is also suitable for

Infoblox IB-1852-GRID-UPG Datasheet

Related papers

Other documents