HomeBlog

May 05, 2025

-

4 Minute Reading

Uncover How to Set DNS Security in SECUI

Learn how to configure DNS Security on SECUI to protect your network from malicious domain access automatically.

DNS Security on SECUI is a network security feature that prevents access to malicious domains, such as those used for trojans, malware, or DNS tunneling. This feature works by detecting and blocking domains listed in the SECUI threat database.

By enabling DNS Security, you can prevent users within your network from accessing harmful websites that could become entry points for cyberattacks.

Topologi.png Figure 0.1 DNS Security Topology on a SECUI Network

1. Login to SECUI

Before configuring, ensure you're logged in with an administrator account.

1.png Figure 1.1 SECUI Login Page

2. Enable DNS Security

The first step is to activate DNS Security from the general settings menu.

• Navigate to Object > Security Profile > DNS Security > DNS Security Common Settings

3.png
Figure 2.1 DNS Security Common Settings

• Enable the "DNS Security" option

4.png Figure 2.2 DNS Security Activation Setting

3. Create a DNS Security Profile

Once DNS Security is enabled, you need to create a DNS Security profile to define filtering policies.

• Go to DNS Security Profile

5.png
Figure 3.1 DNS Security Profile Menu

• Click Add +

6.png Figure 3.2 Adding a DNS Security Profile

• Customize the DNS Security Profile and make sure Enable is checked

Each DNS Security profile can be adjusted with the following options:

  • Whitelist: A list of allowed domains, even if flagged as threats.

7.png Figure 3.3 Domain Whitelist Menu

  • Blacklist: A manual list of domains you want to block.

8.png Figure 3.4 Domain Blacklist Menu

  • DNS Tunneling Check: Detects DNS tunneling techniques often used to bypass filters or communicate with C2 servers.

9.png Figure 3.5 DNS Tunneling Detection Option

This feature is useful in scenarios such as:

  • Your company’s domain is mistakenly blacklisted
  • A high-threat-score domain not yet in the threat database
  • Users utilizing third-party DNS or proxies

Conclusion

DNS Security on SECUI adds an extra layer of protection by automatically blocking access to malicious domains. By following this guide, you can easily enable and manage DNS Security features to enhance your network's cybersecurity posture.

Ensure your DNS profile is applied to the firewall policy and monitor logs regularly to maintain effective protection.

Need more help or want to speak with a technical expert? Contact us here!

Last Updated

May 5, 2025

Category

Network Security, DNS Security

Share This

Share This

On This Page

Back to Top

DOES THIS BLOG RELATE TO YOU?

Fortunately, we have the solution for this problem. You can cosult with us for free! Finding us is as simple as clicking a button.

WhatsappEmail
Look At Google Maps

Contact us for
Free Consultation!

Share your challenges, and we'll provide the best solutions for your business, Connecting with us is as simple as clicking a button, and let us come to you.

malifax indonesia address footermalifax indonesia address footer