DNSFilter - Security Insights 1
DNSFilter - Security Insights 2
Overview
DNSFilter is a cloud-based content filtering tool that blocks internet threats at the DNS layer. It helps protect organizations by preventing access to malicious domains, phishing sites, and other cyber threats, ensuring a safer and more secure internet experience.
This integration ingests the following logs:
- DNS Traffic Logs: Represents information about allowed and blocked DNS requests, threats, domains accessed, policies, networks, and other DNS-related traffic data.
This integration collects DNS Traffic Logs, channeling them into Datadog for analysis. Leveraging the built-in logs pipeline, these logs are parsed and enriched, enabling search and analysis. The integration provides insight into DNS traffic logs through out-of-the-box dashboards and includes ready-to-use Cloud SIEM detection rules for improved monitoring and security.
Setup
Generate API credentials in DNSFilter
- Login to the DNSFilter dashboard and navigate to Account.
- Select Account Settings.
- Navigate to the Security tab.
- Navigate to the API Keys section, then click CREATE KEY.
- Enter a key Name and select an Expiration.
- Click GENERATE KEY.
- Fetch the API Key from the Your API Key Section.
Connect your DNSFilter account to Datadog
Add your API Key.
| Parameters | Description |
|---|
| API Key | The API Key of your DNSFilter platform |
Click the Save button to save your settings.
Data Collected
Logs
The DNSFilter integration collects and forwards DNS traffic logs to Datadog.
Metrics
The DNSFilter integration does not include any metrics.
Events
The DNSFilter integration does not include any events.
Support
Need help? Contact Datadog support.
