• Skip to primary navigation
  • Skip to main content
  • Skip to footer

Cisco Umbrella

Enterprise network security

  • Contact Sales
  • Login
    • Umbrella Login
    • Cloudlock Login
  • Search
Search
  • Why Us
    • Why Cisco Umbrella
      • Why Try Umbrella
      • Why DNS Security
      • Why Umbrella SASE
      • Our Customers
      • Customer Stories
      • Why Cisco Security
    • Fast Reliable Cloud
      • Global Cloud Architecture
      • Cloud Network Status
      • Global Cloud Network Activity
    • Unmatched Intelligence
      • A New Approach to Cybersecurity
      • Interactive Intelligence
      • Cyber Attack Prevention
      • Umbrella and Cisco Talos Threat Intelligence
    • Extensive Integrations
      • IT Security Integrations
      • Hardware Integrations
      • Meraki Integration
      • Cisco Security for Chromebook
  • Products
    • Cisco Umbrella Products
      • Cisco Umbrella Cloud Security Service
      • Recursive DNS Services
      • Cisco Umbrella SIG
      • Umbrella Investigate
      • What’s New
    • Product Packages
      • Cisco Umbrella and Cisco Secure Access Packages
      • – DNS Security Essentials Package
      • – DNS Security Advantage Package
      • – SIG Essentials Package
      • – SIG Advantage Package
      • Umbrella Support Packages
      • Cisco Umbrella for Government Packages
    • Functionality
      • DNS-Layer Security
      • Secure Web Gateway
      • Cloud Access Security Broker (CASB)
      • Cloud Data Loss Prevention (DLP)
      • Cloud-Delivered Firewall
      • Cloud Malware Protection
      • Remote Browser Isolation (RBI)
    • Man on a laptop with headphones on. He is attending a Cisco Umbrella Live Demo
  • Solutions
    • SASE & SSE Solutions
      • Your SSE journey with Cisco
      • Cisco Umbrella SASE
      • Secure Access Service Edge (SASE)
      • What is SASE
    • Functionality Solutions
      • Web Content Filtering
      • Secure Direct Internet Access
      • Shadow IT Discovery & App Blocking
      • Fast Incident Response
      • Unified Threat Management
      • Protect Mobile Users
      • Securing Remote and Roaming Users
      • Umbrella and Duo Layered Protection
    • Network Solutions
      • Guest Wi-Fi Security
      • SD-WAN Security
      • Off-Network Endpoint Security
    • Industry Solutions
      • Government and Public Sector Cybersecurity
      • Financial Services Security
        • – FTC Safeguards Rule Compliance 2023
      • Cybersecurity for Manufacturing
      • Higher Education Security
      • K-12 Schools Security
      • Healthcare, Retail and Hospitality Security
      • Enterprise Cloud Security
      • Small Business Cybersecurity
  • Resources
    • Content Library
      • Top Resources
      • Research Reports
      • Case Studies
      • Videos
      • Datasheets
      • eBooks
      • Solution Briefs
      • Cybersecurity Webinars
    • International Documents
      • Deutsch/German
      • Español/Spanish
      • Français/French
      • Italiano/Italian
      • 日本語/Japanese
    • Security Definitions
      • What is DNS Security
      • What is a Secure Web Gateway
      • What is a Cloud Access Security Broker (CASB)
      • What is Security Service Edge (SSE)
      • What is Secure Access Service Edge (SASE)
      • Cyber Threat Categories and Definitions
    • For Customers
      • Support
      • Customer Success Webinars
      • Free Trial Quick Start Guide
      • Free Trial Help and Tips
  • Trends & Threats
    • Market Trends
      • Generative AI Cybersecurity Risks and Rewards
      • Hybrid Workforce
      • Rise of Remote Workers
      • Secure Internet Gateway (SIG)
    • Security Threats
      • How to Stop Phishing Attacks
      • Malware Detection and Protection
      • Ransomware is on the Rise
      • Cryptomining Malware Protection
      • Cybersecurity Threat Landscape
      • Global Cyber Threat Intelligence
    •  
    • Woman connecting confidently to any device anywhere
  • Partners
    • Channel Partners
      • Partner Program
      • Become a Partner
    • Service Providers
      • Secure Connectivity
      • Managed Security for MSSPs
      • Managed IT for MSPs
    •  
    • Person looking down at laptop. They are connecting and working securely
  • Blog
    • News & Product Posts
      • Latest Posts
      • Products & Services
      • Customer Focus
      • Feature Spotlight
    • Cybersecurity Posts
      • Security
      • Threats
      • Cybersecurity Threat Spotlight
      • Research
    •  
    • Register for a webinar - with illustration of connecting securely to the cloud
  • Contact Us
  • Umbrella Login
  • Cloudlock Login
  • Free Trial
Clearing search keywords

What Is DNS Security?

DNS security helps protect users from cyberthreats both on and off corporate networks. Top-tier DNS security tools also improve the user experience, speeding up connection requests, while blocking malicious traffic and mitigating data exfiltration.

How DNS Security Works | Types of DNS Attacks | DNS Security Capabilities | Related Topics

Watch a DNS Security Demo

Animated illustration of four roaming users and four office buildings sending network traffic to the main data center

Cisco Umbrella Overview Video

Cisco Umbrella DNS security

Umbrella DNS cloud-delivered security service uplevels your security and visibility against Internet-based threats, and protects your users, everywhere, in minutes. Users gain better performance, and administrators can enforce a common set of security policies, from any location.

 

Learn about Umbrella DNS
Icon: How it works

How does DNS security work?

DNS security solutions deploy DNS protection that should be able to:

  • Monitor endpoint and network device DNS requests
  • Leverage continually updated threat intelligence to block risky sites
  • Help meet compliance mandates by enforcing filtering and blocking policies
  • Maintain fast and safe connectivity

 

Icon: Strong Protection

How do I ensure strong DNS protection?

To ensure strong DNS-layer protection, choose a protective DNS service that:

  • Respects user and corporate privacy
  • Provides visibility and control via DNS
  • Protects users and prioritizes alerts
  • Utilizes DNS security extensions
  • Supports all major endpoints and operating systems
Icon: Question in a light bulb

Is DNS security really necessary?

DNS security is necessary because DNS is an integral part of internet infrastructure and a simple, effective avenue for visibility and control. DNS security helps mitigate:

  • Sensitive data theft
  • Malware, phishing, and ransomware attacks
  • Web and non-web callbacks from compromised systems
Dive into DNS security

What are common types of DNS attacks?

What is DNS hijacking?

DNS hijacking is an attack in which threat actors exploit vulnerabilities to take over a DNS server and redirect all traffic to a malicious website.

What is DNS spoofing?

DNS spoofing is a deceptive DNS attack that involves using a poisoned cache to redirect internet traffic to a malicious website that appears legitimate but is designed to install malware or capture sensitive data.

What is DNS poisoning?

DNS poisoning (also called cache poisoning) is a technique threat actors use to swap DNS data with a malicious redirect.

What is DNS tunneling?

DNS tunneling is an attack technique used by adversaries to exfiltrate data via a DNS-based channel. Attackers attempt this by encoding data of other programs and protocols into DNS queries. Detecting and responding to DNS tunneling attacks and exfiltration attempts is a vital part of any DNS security service.

What is DNS amplification?

DNS amplification is a type of distributed denial of service (DDoS) attack that exploits DNS server vulnerabilities to amplify small requests into larger payloads, causing the server to crash.

What are the best types of DNS security capabilities?

DNS-layer security

DNS-layer security solutions protect networks from cyberthreats by securing DNS requests. Cisco Umbrella is a protective DNS service that uses Cisco Talos threat intelligence to block attacks before they reach the network.

DNS security essentials

DNS monitoring

DNS monitoring involves the continuous monitoring of DNS traffic and DNS servers for potential security issues. Recursive DNS monitoring services instantly perform a security check when a user attempts to access a website and blocks connections to risky sites.

Recursive DNS monitoring

DNS filtering

DNS filtering is a tool used to block access to malicious websites and other harmful online content. It can be used to protect against DNS attacks, such as DNS hijacking, by blocking traffic to malicious sites.

Web content filtering

DNS Security Extensions (DNSSEC)

DNSSEC validates DNS requests by digitally signing them with cryptographic signatures. This helps protect against attacks like DNS spoofing and DNS poisoning by ensuring the integrity of DNS data. Cisco Umbrella uses DNSSEC.

DNSSEC and Cisco Umbrella

Integrated security

Integrated security unifies threat management (internet, email, and endpoint security) to close security gaps. Solutions like Cisco Umbrella achieve this by unifying DNS-layer security with secure web gateway, cloud access security broker (CASB), data loss prevention (DLP), remote browser isolation (RBI), and more.

Integrated cybersecurity

Get started

Cisco Cyber Threat Trends Report
Cisco Umbrella’s DNS Security Essentials Package
What Cyberattacks Aren’t You Seeing?
Cisco Umbrella’s Secure Web Gateway
Cloud Security Services for Your Business
2022 DNS Threat Trend Report
 

Related security topics

What is Network Security?
What is a Firewall?
What is Phishing?
What is a Data Breach?
What is Network Policy?
What Is a Security Platform?
What is Advanced Malware Protection?

 
 

Cisco Umbrella security blogs

Cisco Umbrella: A Leader in the GigaOm Radar for DNS Security
ABCs of DNS
DNS-Layer Security: What It Is and Why You Need It
The Difference Between Authoritative and Recursive DNS Nameservers
DNS-layer Security for Small Businesses
Detect and Prevent Ransomware Attacks with DNS Security
Use DNS Data to Drive Better Security Decisions
 

Related Cisco security blogs

SSO and the Road to Passwordless
Automate Your Journey Towards DNS Security
Overcoming the DNS “Blind Spot”
DNS Hijacking Abuses Trust in Core Internet Service
 
 

Follow Us

Facebook X LinkedIn Youtube

Footer Sections

What we make

  • Cloud Security Service
  • DNS-Layer Network Security
  • Secure Web Gateway
  • Security Packages

Who we are

  • Global Cloud Architecture
  • Cloud Network Status
  • Cloud Network Activity
  • OpenDNS is now Umbrella
  • Cisco Umbrella Blog

Learn more

  • Webinars
  • Careers
  • Support
  • Cisco Umbrella Live Demo
  • Contact Sales
Umbrella by Cisco
208.67.222.222+208.67.220.220
2620:119:35::35+2620:119:53::53
Sign up for a Free Trial
  • Cisco Online Privacy Statement
  • Terms of Service
  • Sitemap

© 2025 Cisco Umbrella