We launched Sophos DNS Safety for networks final 12 months, and it’s now near serving its 600 billionth question. Since then, lots of you may have requested for a model that can be utilized on roaming endpoints and for extra insights into DNS requests together with DNS over HTTPS.
At present, we’re excited to launch the early entry program (EAP) for DNS Safety on Home windows endpoints with enhanced visibility into which customers and units are making DNS queries and assist for HTTPS.
As , Sophos DNS Safety for Endpoints allows an added layer of clear internet safety throughout all ports, protocols, and functions.
Sophos DNS Safety for Endpoints
DNS Safety can now be deployed and enabled in your Home windows endpoint units in Sophos Central. As soon as deployed, the agent intercepts all DNS visitors from packages and apps on the Home windows system and forwards it to the closest DNS Safety resolver by way of DNS over HTTPS. DNS Safety will verify the requests for safety dangers and coverage compliance and permit or block entry accordingly.
DNS Safety insurance policies present a complete set of controls:
- Class-based permit and block guidelines
- Customized area permit and block lists
- Imposing secure search options on Google, YouTube, and different engines like google
Enhanced visibility
All DNS queries originating out of your endpoint units are logged with the person and system names. This lets you pinpoint problematic units and goal responses to deal with safety points. It additionally enhances the info obtainable throughout XDR and MDR incident investigations.
Word: system and person identities are solely obtainable when used together with the Sophos DNS Safety for Endpoints agent and never but for DNS Safety on Sophos Firewall.
DNS over HTTPS for privateness and integrity
Sophos DNS Safety for Endpoints helps DNS over HTTPS for added privateness and integrity. Through the use of a safe, encrypted TLS tunnel, all queries and responses are protected against community snooping and from assaults, resembling DNS cache poisoning, that exploit the open nature of conventional DNS protocols.
HTTPS assist is just obtainable on DNS Safety for Endpoints at this level, nonetheless it would come to Sophos Firewall within the close to future.
Getting began
Get began immediately with the early entry program for Sophos DNS Safety for Endpoints on the Sophos Group.
