Malwarebytes DNS Filtering uses the Domain Name System (DNS) to limit the number of domain-based threats on a network. This ensures your company data remains secure while allowing control over what employees can access regardless of the connected network.
Domain Name System
DNS translates domain names into IP addresses that web browsers and applications use for network communication. When an endpoint attempts to reach a domain, a DNS Resolution request is made to look up the IP address and return it back to the endpoint. The endpoint proceeds to the domain once that IP address is identified.
DNS over HTTPS
DNS over HTTPS (DoH) encrypts DNS network traffic by passing queries through an HTTPS encrypted session. Data privacy and security are improved by only transmitting necessary information during the DoH query process. DoH helps prevent spoofing and man-in-the-middle attacks across protected endpoints.
Hosts file monitoring
A hosts file is a file on the computer that the operating system uses to map hostnames to IP addresses. Modifying the file enables users to access sites without making a DNS Resolution request. The Malwarebytes DNS Filtering module monitors the hosts file for modifications to ensure this bypass is not allowed. The domain is verified with our module before allowing a user access to a site. The user will not be granted access if the domain fits a blocked category of the DNS Filtering rule.
The DNS Filtering page in Nebula grants you control over what employees can access on endpoints by blocking malicious websites and filtering out harmful or inappropriate content.
To get started with DNS Filtering, see Create global DNS Filtering exclusions in Nebula.
Return to Malwarebytes Nebula DNS Filtering guide.