DDoS Detection, Mitigation, Orchestration, and Threat Intelligence
Consolidated Security & CGNAT
TLS/SSL Inspection
Web Application Firewall
Application Security & Load Balancing
Analytics & Management
CGNAT & IPv6 Migration
The A10 DNS portfolio shields DNS infrastructure from DDoS attacks and exploits while augmenting capacity for recursive and authoritative functions.
DNS is an inherently insecure protocol and is vulnerable to a variety of cyberattacks that can disrupt network and service availability and violate confidentiality of users and their data. This poses a challenge for the ISPs responsible for ensuring uninterrupted DNS service and maintaining user privacy.
DNS is a favorite target for cybercriminals and a top target for DDoS attacks. When attackers incapacitate a service provider’s DNS servers, subscribers can’t resolve domain names, visit websites, send email, or use other vital internet services. DNS attacks have brought down service providers’ DNS services for hours, even days. Organizations can suffer lost revenue and brand damage if an attacker disrupts access to DNS infrastructure and prevents users from accessing vital services.
DNS is critical to maintaining the subscriber experience of speed, security, and availability. Underperforming DNS technology will slow DNS resolution, add latency to query responses, cause slow web page downloads, timeout of applications and other problems that can impact the subscriber experience.
The A10 DNS portfolio includes high-performance Defend Mitigator, Thunder ADC and Thunder CFW products that provide several critical DNS solutions for better protection and processing capability to offload or replace existing DNS servers.
DNS servers can be consolidated or eliminated with Thunder ADC or Thunder CFW, providing high-speed resolver and cache support while coexisting with current DNS features. This shields DNS servers from attacks and reduces the number of DNS servers that need to be provisioned, lowering capital expenses.
A10 Defend Mitigator can be used as a high-performance authoritative DNS cache. The solution’s non-stop DNS operational mode can cache millions of DNS records and respond to queries at millions of queries-per-second during a DNS DDoS attack.
With the DoH/DoT features in Thunder CFW, service providers can offer their subscribers the option of higher security and enhanced privacy protection through end-to-end encryption for DNS queries.
Thunder ADC and CFW shield DNS infrastructure from attacks with the powerful and comprehensive DNS application firewall (DAF). The solution stops buffer overflow, malformed requests and denial of service (DoS) attacks, shielding DNS servers.
Thunder ADC and Thunder CFW can load-balance multiple DNS servers and cache DNS responses, providing scale and enabling DNS servers to handle heavy loads and massive attacks.
Case StuDy
Critical Issues
Results
Related Product: A10 Thunder CFW
IN THEIR WORDS
“As encrypted DNS grows in usage, the cable operator can assure privacy and security for tens of millions of subscribers without impacting the user experience.”
DNS Application Firewall
DNS over HTTPS (DoH) – Strengthen DNS Infrastructure Security and Privacy
Secure and Protect DNS Traffic With DNS Over HTTPS (DoH)
How to Defend DNS Services From DDoS Attacks of All Types
Ready to See?
Schedule a Demo
Schedule Demo
Ready to Try?
Get a Free, 30-Day Trial
Get a Free Trial
Ready to Buy?
Call sales at 1-888-A10-6363 or fill out our contact form
Contact Sales
