OpenText™ Core DNS Protection

Real-time DNS protection for modern threats

Protect your users and devices on any network with full control of DNS traffic.

Book a demoInteractive tour

Solution snapshot

  • Block malicious domains, ransomware, and phishing attacks before a connection is made.

  • Stop data exfiltration by cutting off access to command-and-control servers at the DNS level.

  • Secure remote and hybrid workers on any network without disrupting productivity.

  • Control encrypted DNS traffic (DoH/DoT) and ensure requests route through trusted resolvers.

  • Deploy quickly across endpoints and operating systems with no impact on user experience.

Why DNS protection is critical

The Domain Name System (DNS) is the backbone of internet connectivity and a growing target for cyberattacks. With hybrid work expanding and encrypted DNS (DoH/DoT) becoming standard, attackers exploit DNS resolution to bypass defenses, steal sensitive information, and communicate with malicious domains. Without full visibility and control over your DNS infrastructure, your organization is vulnerable to malware, cyber threats, and compliance risks.


Safeguard web use with DNS filtering

What is DNS protection

OpenText Core DNS Protection is a cloud-native DNS security solution that filters every DNS request—from browsers, apps, or background processes—to block access to malicious sites and prevent data exfiltration.

It secures endpoints across all operating systems, enforces policies in real time, and ensures that encrypted DNS traffic is resolved only by trusted sources.

    Core benefits of DNS protection

    Most threats don't announce themselves. OpenText Core DNS protection stops them at the earliest possible point, before they ever reach your users, devices, or data.

    • Block malicious domains to prevent malware, ransomware, and phishing attacks.

    • Stop data exfiltration by cutting off access to command-and-control servers.

    • Gain full visibility to all DNS activity with comprehensive logs

    • Centralized policy enforcement to filter all DNS requests.

    • Control DoH/DoT connections and inspect encrypted DNS traffic.

    • Hybrid and remote workforce protection on any network.

    Advanced DNS protection features

    Attackers exploit DNS because most organizations can't see what's happening at that level. Core DNS Protection gives you complete visibility and control over every DNS request, from any device, on any network.

    • Agent-level awareness stops unauthorized DNS resolution at the process level.

    • Dynamic detection of unauthorized authoritative DNS servers.

    • Filter device DNS requests in real time for hybrid work environments.

    • Logs DNS responses for visibility, investigation, and compliance reporting.

    • Continuous monitoring to enforce security measures across your DNS infrastructure.

    • Continuous monitoring to enforce security measures across your DNS infrastructure.

    • Quick deployment across endpoints with no impact to the user experience.

    • Uses trusted, encrypted DNS resolvers to safeguard sensitive information.

    How OpenText DNS Protection blocks malicious activity

    OpenText Core DNS Protection acts as a DNS firewall, monitoring all DNS traffic for signs of malicious activity. It filters requests against known DNS servers, dynamically identifies unknown servers, and blocks harmful queries in real time.

    Detailed analytics and reporting provide insights into DNS traffic, identify vulnerabilities, and protect your organization from malicious actors.

      Take an interactive tour of our Core DNS Protection platform

      Take an immersive product tour to see how OpenText Core DNS Protection helps block threats earlier, enforce acceptable-use policies, and simplify DNS security management from a single, centralized platform.

      Start interactive tour

      Customer success

      For our clients with OpenText Core DNS Protection, help desk calls are reduced by almost 40%.

      Jason Ballard
      IT Solutions Manager
      Sedona Technologies

      Resources

      Data sheet
      OpenText Core DNS Protection

      Check out this datasheet to explore key features and benefits of DNS Protection.

       

      Solution overview
      OpenText Core DNS Protection Leak Prevention

      Get fast, intelligent, and scalable endpoint protection that’s easy to deploy, manage, and built for modern threats.

       

      Blog
      What is DNS protection?

      Learn how this critical security layer protects your business.

      FAQ

      Protective DNS filtering is a DNS security service that analyzes all DNS requests, comparing them against threat intelligence feeds to block access to malicious domains before a connection is made. By filtering DNS traffic and logging DNS responses for visibility and investigation, solutions like OpenText DNS Protection can stop multiple stages of cyberattacks—including phishing, malware delivery, and lateral movement—and even prevent threats from reaching your endpoints, users, or DNS infrastructure.

      OpenText DNS Protection acts as a DNS firewall, blocking unauthorized DNS resolution—even at the process level or from encrypted DNS sources—to ensure all DNS traffic is filtered, logged, and compliant with security measures across your DNS infrastructure.

      No. OpenText DNS Protection can be quickly deployed across all endpoints and operating systems, providing real-time DNS security with minimal impact on user experience.

      The OpenText DNS Protection agent enforces policies and filters DNS requests on any network, securing endpoints for remote and hybrid workforces. It ensures all DNS activity is logged for visibility, threat detection, and compliance, protecting users wherever they go.

      OpenText DNS Protection blocks unauthorized DNS over HTTPS (DoH) and DNS over TLS (DoT) connections while ensuring the use of trusted, encrypted DNS resolvers. This guarantees privacy, control, and secure DNS resolution for all requests across your DNS infrastructure.