Protect Devices Everywhere

ActiveTrust Cloud protects devices everywhere-whether they are on your premises, roaming, or in remote or branch offices. It provides visibility into infected devices, prevents DNS-based data exfiltration, automatically stops device communications with command-and-control (C&C) servers and botnets, and blocks access to content not in compliance with policy. Delivered as a service, it is operationally easy to use, deploy, and maintain, reducing IT overhead.

Delivered as a service, it is operationally easy to use, deploy, and maintain, reducing IT overhead.

Sign up to get access to the 30-day full-feature evaluation. You get:

  • DNS Firewall: Comprehensive malware mitigation including C&C callbacks, phishing, exploit kits, ransomware, and more
  • Threat Insight: Prevention of data exfiltration that other systems can't detect; DGA and fast flux detection
  • Content categorization: Prevent access to objectionable content
  • Threat Intelligence Data Exchange: Aggregated, curated and most up-to date threat intelligence for distribution to Infoblox and broader security ecosystem
  • Dossier: A threat-investigation tool for fast analysis to take action in minutes, not hours
  • Public APIs: Respond to threats faster by pulling security event data into ecosystem tools; create custom threat feeds
  • Integrated and detailed reporting: Rich context on infected devices and user activity
  • Hosted recursive DNS services: Highly available anytime, anywhere access
  • Lightweight Endpoint Client: Protect roaming devices by redirecting DNS requests from endpoints to Infoblox cloud
  • DNS Forwarding Proxy: Agentless option with a virtual appliance that embeds client IP into DNS queries before forwarding to Infoblox cloud

After you try the full-feature evaluation and decide to purchase, you can choose from two tiers - ActiveTrust Cloud Standard and ActiveTrust Cloud Plus.

ActiveTrust® Cloud Standard ActiveTrust® Cloud Plus
Recursive DNS Firewall (RPZ Zone) Threat Intel Feeds Standard (6 reputation datasets)
  • Base
  • Anti-malware
  • Ransomware
  • Bogon
  • Automated Indicator Sharing (AIS) data (2)

Threat Intel Feeds Standard (6) + Advanced (5) + SURBL (2)

  • Base, Anti-malware, Ransomware, Bogon, AIS
  • Malware IPs, Bots IPs, Exploit Kit IPs, Malware DGA hostnames, Tor Exit Node IPs
  • SURBL Multi domains, SURBL Fresh domains
Content Categorization Not included Restrict access to objectionable content in the cloud
Dossier (Threat Investigation Tool) Not included (Basic threat lookup via Cloud Services Portal only) 32,000 queries/year
Public APIs (for ecosystem)
  • Threats APIs
  • Custom list APIs
Not Included
  • Included – Security events available in CEF or JSON format via Cloud APIs– with enhanced security reports
  • Ability to create custom threat feeds via Cloud APIs
Threat Insight (DNS Tunneling/Data Exfiltration, DNSMessenger, DGA, Inline DGA, Dictionary DGA, Fast Flux) Not Included Machine learning based analytics
TIDE Infoblox Threat Intelligence Data Exchange (TIDE) license – enabling use in third party security solutions Not included Licensed use for ONE of the following: (for use in any non-Infoblox security solution)
  • Hostnames or
  • IP Addresses or
  • URLs
Reporting Basic—malware blocked, number of hits
  • Integrated reporting with on-premises Grid, enabled by virtual Data Connector utility
  • Enhanced visibility with drill-down reports to identify exact user and device
ActiveTrust Endpoint (client agent - can be deployed using SCCM or McAfee ePO) Included Included
DNS Forwarding Proxy Included Included
Hosted Recursive DNS with
Geo-Location Response (Using EDNS)
Included Included

Start Your Product Evaluation

Complete the form below, and we will reach out to you to get you started with ActiveTrust Cloud.