Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
3142
Views
35
Helpful
6
Replies

Cisco Umbrella

Go to solution
LovejitSingh1313
Level 1
Level 1

‎01-22-2021 02:02 PM

What is Cisco Umbrella, How it can enhance Security of Endpoint/Network?

 

Thanks

Labels:
0 Helpful
3 Accepted Solutions

Accepted Solutions

Go to solution
Mohammed al Baqari
Level 11
Level 11
In response to LovejitSingh1313

‎01-24-2021 10:12 PM

Hi,

How we can configure it?

It depends on your deployment whether you are using it on 4k routers,
roaming client, vManager, etc.

This guide for roaming clients and virtual appliances.

https://docs.umbrella.com/deployment-umbrella/docs/3-deployment-guidelines

This is the integration guide for all supported integrations (WLC,
9200/9300, ASA, DNAC, etc)

https://docs.umbrella.com/hardware-integrations/docs/integration-for-isr-4k-and-isr-1100-security-configuration-guide

To forward HTTP and HTTPS traffic, you need to have the license
(Advantage or SIG) as I shared earlier in the post. In addition, follow the
guides to configure integration and traffic forwarding to Umbrella Cloud.
You need to work closely with Cisco on this to make sure that you are
forwarding it to the closet tower for better user performance. You don't
want users in Beijing to forward to US (that is very poor performance).

Look at the license comparison link, it has all the required features
assigned with each license package. You can have web filtering and content
inspection, file inspection, API integration, CASB (still in early stages),
etc.

Here is the licensing link again.

https://umbrella.cisco.com/products/umbrella-enterprise-security-packages

**** please remember to rate useful posts

View solution in original post

Go to solution
Marvin Rhoads
Hall of Fame
Hall of Fame

‎01-25-2021 12:37 AM

Using Umbrella without licensing is possible but you only get the bare minimum - DNS services plus blocking the worst of the worst lookups.

If you want any policy creation and enforcement as well as reporting then you need Umbrella licenses. As @Mohammed al Baqari mentioned they are available in several tiers - from basic DNS security up through cloud-based firewall (SIG) as well as API-based integration with other products (Cisco and other vendors).

View solution in original post

Go to solution
balaji.bandi
Hall of Fame
Hall of Fame
In response to LovejitSingh1313

‎01-25-2021 03:04 AM

There is many different way to look each product and what you looking, umbrella tech team more helpofull, if you can reach local partner, they can install for you demonstrate, so you see and belive and explore the option and question can be clarifed.

 

with umbrella  you get many advanced features of security and integrate with exiting kit.

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

View solution in original post

6 Replies 6

Go to solution
Mohammed al Baqari
Level 11
Level 11

‎01-24-2021 03:44 AM

Hi,

In short its DNS security which can enhance web security of the endpoint by
inspecting DNS queries and apply security filtering policies to block or
allow the DNS query.

There are advanced packages which can provide Secure Web Gateway, i.e. web
proxy in cloud, CASB for cloud apps, File inspection in cloud, etc.

Here are the different flavors.

https://umbrella.cisco.com/products/umbrella-enterprise-security-packages

***** please remember to rate useful posts

Go to solution
LovejitSingh1313
Level 1
Level 1
In response to Mohammed al Baqari

‎01-24-2021 06:11 PM - edited ‎01-24-2021 06:45 PM

Hello @balaji.bandi  @Mohammed al Baqari  @Richard Burts   @Marvin Rhoads  @Marius Gunnerud @Rob Ingram 

 

I totally understand the concept that Cisco Umbrella provides DNS security and did not resolve anything to blacklisted servers and it can also provide cloud base Web Filtering.

 

How we can configure that? 

I can think setting up root DNS server on local DNS to forward all DNS requests to umbrella. Is it correct ?

 Also how we can forward all Web (HTTP/HTTPS) traffic to Umbrella, what needs to be done on local Firewall to accomplish that ?

 

What benefits does Roaming client else then enforcing DNS server to OPENDNS?

 

What benefits Umbrella AD Connector provide?

 

Thanks 

  

Go to solution
Mohammed al Baqari
Level 11
Level 11
In response to LovejitSingh1313

‎01-24-2021 10:12 PM

Hi,

How we can configure it?

It depends on your deployment whether you are using it on 4k routers,
roaming client, vManager, etc.

This guide for roaming clients and virtual appliances.

https://docs.umbrella.com/deployment-umbrella/docs/3-deployment-guidelines

This is the integration guide for all supported integrations (WLC,
9200/9300, ASA, DNAC, etc)

https://docs.umbrella.com/hardware-integrations/docs/integration-for-isr-4k-and-isr-1100-security-configuration-guide

To forward HTTP and HTTPS traffic, you need to have the license
(Advantage or SIG) as I shared earlier in the post. In addition, follow the
guides to configure integration and traffic forwarding to Umbrella Cloud.
You need to work closely with Cisco on this to make sure that you are
forwarding it to the closet tower for better user performance. You don't
want users in Beijing to forward to US (that is very poor performance).

Look at the license comparison link, it has all the required features
assigned with each license package. You can have web filtering and content
inspection, file inspection, API integration, CASB (still in early stages),
etc.

Here is the licensing link again.

https://umbrella.cisco.com/products/umbrella-enterprise-security-packages

**** please remember to rate useful posts

Go to solution
balaji.bandi
Hall of Fame
Hall of Fame
In response to LovejitSingh1313

‎01-25-2021 03:04 AM

There is many different way to look each product and what you looking, umbrella tech team more helpofull, if you can reach local partner, they can install for you demonstrate, so you see and belive and explore the option and question can be clarifed.

 

with umbrella  you get many advanced features of security and integrate with exiting kit.

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

Go to solution
Marvin Rhoads
Hall of Fame
Hall of Fame

‎01-25-2021 12:37 AM

Using Umbrella without licensing is possible but you only get the bare minimum - DNS services plus blocking the worst of the worst lookups.

If you want any policy creation and enforcement as well as reporting then you need Umbrella licenses. As @Mohammed al Baqari mentioned they are available in several tiers - from basic DNS security up through cloud-based firewall (SIG) as well as API-based integration with other products (Cisco and other vendors).

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents