We launched Sophos DNS Safety for networks final 12 months, and it’s now near serving its 600 billionth question. Since then, lots of you could have requested for a model that can be utilized on roaming endpoints and for extra insights into DNS requests together with DNS over HTTPS.
At the moment, we’re excited to launch the early entry program (EAP) for DNS Safety on Home windows endpoints with enhanced visibility into which customers and units are making DNS queries and help for HTTPS.
As you understand, Sophos DNS Safety for Endpoints allows an added layer of clear net safety throughout all ports, protocols, and purposes.
Sophos DNS Safety for Endpoints
DNS Safety can now be deployed and enabled in your Home windows endpoint units in Sophos Central. As soon as deployed, the agent intercepts all DNS visitors from packages and apps on the Home windows gadget and forwards it to the closest DNS Safety resolver by way of DNS over HTTPS. DNS Safety will examine the requests for safety dangers and coverage compliance and permit or block entry accordingly.
DNS Safety insurance policies present a complete set of controls:
- Class-based enable and block guidelines
- Customized area enable and block lists
- Implementing protected search options on Google, YouTube, and different search engines like google
Enhanced visibility
All DNS queries originating out of your endpoint units are logged with the consumer and gadget names. This lets you pinpoint problematic units and goal responses to handle safety points. It additionally enhances the info obtainable throughout XDR and MDR incident investigations.
Observe: gadget and consumer identities are solely obtainable when used along with the Sophos DNS Safety for Endpoints agent and never but for DNS Safety on Sophos Firewall.
DNS over HTTPS for privateness and integrity
Sophos DNS Safety for Endpoints helps DNS over HTTPS for added privateness and integrity. By utilizing a safe, encrypted TLS tunnel, all queries and responses are protected against community snooping and from assaults, akin to DNS cache poisoning, that exploit the open nature of conventional DNS protocols.
HTTPS help is just obtainable on DNS Safety for Endpoints at this level, nonetheless it’s going to come to Sophos Firewall within the close to future.
Getting began
Get began in the present day with the early entry program for Sophos DNS Safety for Endpoints on the Sophos Neighborhood.
