DNS is a critical component behind all Internet applications, websites, e-mail, messaging and e-commerce. We at Planisys have developed the PDNS platform for task automation and full control of the DNS Operation at Service Providers, Financial Institutions and other Organizations requiring a high level of security.
Total Queries (positive hits and nxdomain miss)
Malware/Attacker Hits per RBL
RBL Total Queries distribution
RBL Hits distribution
Intuitive, multi-tenant, responsive web interface for DNS Resource Records CRUD (Create Read Update and Delete). Consistency checks and alerts for changes in delegation , lame delegations or zone serial numbers out-of-sync. Prometheus and Grafana metrics and graphic dashboards.
DNSSEC support for zone signing and root-of-trust in the delegation chain. GeoDNS support with graphical interface and authoritative traffic redirection depending on country and city.
Consistency checks and alerts for changes in delegation , lame delegations or zone serial numbers out-of-sync. E-Mail and SMS alerts to keep track of dead zones and failures in zone transfers.
With a real-time feed of +1M of malware infected domains, DNS uses RPZ (Response Policy Zones) to protect all endpoints of your organization, from cellphones to desktop PCs and servers, by non resolving domains involved in Malware attacks such as C&C (Command & Control) servers.
SysDNS is a module to remotely manage resolvers and authoritative Bind and PowerDNS servers. As an extension of PDNS web interface, it permits management of different ACLs for zone transfers for different scenarios, with both trusted CIDRs and HMAC-MD5 keys.
As DNS is a critical component of the organizations' Internet presence as well as for internal systems, logins to the PDNS platform are protected by two-way authentication with SMS messages.That way, there's more certainty about the users' identity, because a user owns its cellphone and knows its password.
PDNS keeps track of user modification by means of an encrypted auditlog that honours the privilege hierarchy, having a superadmin that can view all users' activity. Delegation events originated in other systems are also being timestamped and recorded together with manual interventions, to have a better understanding and forensics of DNS configuration history.
PDNS provides ways to protect and alert administrators by e-mail and SMS before his domains are going to expire, by looking up their WHOIS information on a regular basis. X509 certs can also be uploaded as associated information to the domains, and keep administrators alerted about expiry dates.
PDNS' web interface is multi-tenant , with granular permissions to ensure proper access privileges and management of DNS resources according to superadmins, admins, resellers and final customers. PDNS can be deployed at customer's premises or as SaaS in the cloud. PDNS can also be implemented in the infrastructure of your company, in addition to being available in Software-as-a-service mode in the cloud.