Cisco: Using OpenDNS with Cisco WSA and Splunk for private reporting
Sometimes having a effective and innovative solution goes in a confrontation with the local country requirements. Especially when we want to deploy as cloud based security service.
Using a cloud security service will one the one hand address quite nicely the need for better security and easy deployment , on the other hand a CxO must also follow local privacy laws and deal with the agreements between the company and workers unions. This can very often lead to delays, discussions and even preventing a solution from being installed. This short post should give you an idea how to use a cloud based Security Service and at the same time, provide granular local logging without compromising privacy.
In a customer environment we faced the following situation:
- The customer was using a Cisco WSA as a Web Security Gateway
- The customer was looking for additional security layers against threats from the web
- They were concerned about sending Usernames and IP addresses to a cloud service
To provide an additional security layer, we decided to take a look at the OpenDNS Service from Cisco (www.opendns.com), recently renamed to Cisco Umbrella. This service provides security at the DNS Layer, being able to detect requests to malicious domains and block them right away before anything else needs to be filtered.
Read the entire article here, Using OpenDNS with Cisco WSA and Splunk for private reporting
via the fine folks at Cisco Systems.