Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1232
Views
0
Helpful
2
Replies

Umbrella and UTM URL filtering

techno.it
Level 1
Level 1

‎11-10-2021 01:09 AM - edited ‎11-10-2021 10:21 AM

I have a UTM firewalls at the internet edge. All the web traffic from LAN is sent to the firewall using transparent and explicit modes.

Now we are evaluating Cisco umbrella with two virtual appliances.

 

For explicit mode user we would need to set the DNS on firewall to VA IPs and VAs are goint to send all DNS request to umbrella servers.

 

For transparent mode users, clients will send requests to internal DNS servers, then forward to VAs.

 

I understand recommend setup is to configure the DNS clients with VAs IP. But in my case, changing the DNS on clients is not possible now, perhaps it will be changed later.

 

Having said that, how do URL filtering categories are going to be handled when Cisco Umbrella and UTM are working in conjunction to each other.

 


Would love to have inputs.

0 Helpful
2 Replies 2

techno.it
Level 1
Level 1

‎11-10-2021 01:14 PM

Any expert opinion please?

0 Helpful

adamwin
Cisco Employee
Cisco Employee

‎11-17-2021 12:32 PM

The VAs aren't going to offer much benefit if you can't change the DNS settings on the clients. If the DNS queries have to hit another device first, the source IP of the clients will be hidden by the time the query is forwarded to the VA.

 

You're better off registering your egress IP address for the network and not using the VAs. 

0 Helpful
Customers Also Viewed These Support Documents