Webroot® DNS Protection
Welcome to the DNS Protection Discussion Forum!
- 34 Topics
- 184 Replies
Hi All – I am the Product Manager for DNS Protection and my colleague [user=51739]JonathanB[/user] and I are resident DNS evangelists and we are always interested in hearing from you on your experience with the product – good or bad! It has been close to 2 years since we launched DNS Protection service to the market and I am happy to share that we received the highest rating by [url=https://www.expertinsights.com/service-types/dns-web-filtering/reviews][u]Expert Insights[/u][/url] and we are seeing good steady adoption of the product. Webroot is committed to serving our SMB and MSP customers and bringing best in class Security offerings. To recap, 2018 was a very busy year for us and I would like to highlight some key product enhancements that has driven our growth: [list] [*]VPN support + IPv6 support (only vendor to support IPv6 for roaming clients) [*]Granular Policy Management enables support at Site, Group, and individual devices. [*]Stable, Hardened DNS client for
We have to big issue in Turkey to use Dns Protection. In the starting of computers Dns Protection agent cannot resolve any websites like 5 minutes. After 5 minutes Dns agent working properly. This is a very big issue, a lot of customers, and potential customer affected from that problem.
Hi, I tried to enable DNS protection for a macOS device (v10.15.3 Catalina). I noticed there is only a Windows icon on “Install DNS Protection” settings. Does this mean DNS protection is not yet supported on macOS? I checked the docs but couldn’t find anything about this. Is there a way to manually install the DNS protection agent if it is not possible via the policy settings? Thanks for any help.
Hi Everyone, My name is Kiran Kumar and I am the Product Director for Network portfolio within the business segment – responsible for DNS-Protection and FlowScape - Network Anomaly detection. I am based in sunny San Diego and have been with Webroot for 4yrs driving various network and Threat Intelligence portfolio. Complementing our award winning Endpoint Protection product, we have put a layered approach in protecting our SMB and MSP clients with a network based solution called DNS-Protection. This is a compelling advantage for Webroot as we look to further establish ourselves as a security leader in the MSP/SMB market and provide a comprehensive security solution and be the trusted security advisor for our MSP/SMB community. Our approach to product development is to bring incremental releases to market and making adjustments based on customer needs and you can find highlights from [url=http://images.saas.webroot.com/Web/Webroot/%7B432250c7-b3c6-45d0-baf9-aba65cf2
Hi, We're currently running a demo of the DNS Protection agent. So far, I like the ease of install; just enable it on the Webroot SecureAnywhere Endpoint Policy and it gets installed pretty much immediately (next poll). That's nice. Also like the DNS protection at the network level - guest wifi, DNS forwarders. So anything devices on the network get the benefit as well. What I'm not liking is the reporting. There's no way to do a custom report on a user's web browsing. And there's no DNS Charts for the Dashboard. It would be nice to quickly look at the Dashboard and see some charts for Web Browsing - Top Users, Threats Blocked, etc. We're currently a Forcepoint shop and potentially looking to switch Are there any Reporting updates coming soon to this product? Thanks.
In the GSM, a client's site was selected to Manage. On the Site's Management > DNS tab, "Enable SecureAnywhere DNS" was selected. The "Default DNS Policy" field is set to "Default DNS Policy" and is not editable. The attached tag for the field states "...can be modified under Global Settings DNS tab." On the Global Settings DNS tab, there are three existing policies, and new custom policies can be created. However, there is no readily apparrent method to change the Default DNS policy for the site to any policy other than the pre-selected Defaut DNS policy. The Default policy may be edited, but there is no apparent method to change the site default to another existing policy. Further, in the site Policies, "Install DNS Protection" can be turned on for a specific policy, but here also there is no method for applying a specific DNS Policy. Other than editing the Default DNS Policy itself, how does one select or apply a specific DNS policy as default for a site, or
We are very pleased to announce the launch of the DNS Leak Prevention Beta. This is an opportunity for us to share with you the feature we are about to release, as well as to solicit feedback, both from a technical and functionality perspective. Download the Beta Runner here.Documentation available here. What is DNS Leak Prevention? This is a new patent pending feature of the Webroot DNS Protection product. It is designed to provide control of DNS by blocking all alternate DNS resources aside from those configured in Webroot DNS Protection. This is done by locking down port 53 TCP and UDP (DNS), port 853 TCP (DNS over TLS), and port 443 TCP to known DoH providers. Why are we creating DNS Leak Prevention? As Webroot DNS Protection is a DNS filtering product, if we are not filtering every DNS request, it means that things are being missed. For example, if a web browser were to be configured to get DNS resolution directly from its own server, and disregard what was configured on the opera
Really need a sanity check. Getting ready to deploy DNS protection to a client that only has endpoint protection.The only difference between this client and other using DNS protection is that they don’t have a DNS server. They have no on-prem servers or services that would need to resolve locally. Storage and apps are cloud based.I couldn’t find anything in the deployment guides about anything different for this type of environment. I suspect it is because there is nothing different that needs to be done, but I thought I would reach out to the community pre-deployment to see if anyone has deploy to a similar environment recently and what to expect.TIAMike
I'm not sure if this is appropriate in the community forums, but I was hoping someone could test my DNS settings and verify if they are experiencing the same issue (if this is not appropriate, any troubleshooting tips would be greatly appreciated). I've attached screenshots of my DNS Policy and Web Allow List. [img]https://d1qy7qyune0vt1.cloudfront.net/webroot-en/attachment/37205i1F74005975B4AAA7.png[/img] We have a need to occasionally place orders on the site: [url=https://suzannesomers.com]https://suzannesomers.com[/url], but when attempting to progress past the Customer Information page, nothing happens. There is no blocked page, and the site does not forward any DNS queries that I could see by using the nirsoft DNS sniffer tool. Here is how to recreate the issue we are experiencing. On the website after a few moments there will be some scrolling products, hover over the picture> Quick View> Add to Bag. Then new the top right of the page is the Cart icon, click
I find webroot Google search engine. I hope you will help. I am teacher in the school. I need to block this site. I give you link. https://sites.google.com/site/allunblockedgames77 Children enter this site in their free time. They don't listen to me. Can I block through the system, will you show me the way ? I want to block all unblocked games web site. I try dns but it is useless. Thank you.
Hey! I am having trouble with a popup written DNS unlocker. It keeps popping up, but I know enough not to install it. I am guessing it is some kind of malware or virus and I have read about such malicious things in [url=http://nci.ca/what-can-you-do-to-protect-yourself-from-spyware-malware-and-ransomware/]cyber security blogs on the Internet[/url]. Is this like that wannacry ransomware everyone is talking about? I have webroot installed, but it didn’t give any warning or message about any virus. May be this thing might have escaped its detection. But is it possible? What should I do? Do I need to add any extra protection?
Hello, I have 16 total DNS agents installed, 14 of which shows as active, and another 2 showing as in-active. My question is: What is the criteria for a client to be "Inactive"? I checked the client machines and the DNS Protection Agent service is running, and the console reports that the End Point and DNS Agent is installed. Unsure why 2 of my clients aren't becoming 'active'. Any help or guidance is greatly appreciated. Thank you, Brad
Just an FYI to anyone seeking to turn off WebRoot DNS Filtering: My recent experience is that turning off DNS Filtering in the GSM does NOT remove the DNS Filtering agent from the client. I had clients unable to surf due to DNS issues with after DNS Filtering was activated. De-activated DNS Filtering, issues continued. Found the DNS Filtering agent still installed on afftected clients, altering the DHCP DNS settings. Manually removed the agent.
We are trialing DNS protection on PC's that are in mobile use all around the country. We've had some interesting results and looking at the DnsProxyAgent I'm a bit confused. Our deploment has devices with WLAN and WWAN (4G module) NIC's operating in public operator network. However in the DnsProxyAgent log file there is no mention of the WWAN module or it's DNS server addresses. Are WWAN NIC's supported by DNS Protection or not? It is the same style NDIS NIC as the others, so here should be no difference. ps. Is there a debug switch that would display more detailed log, for troubleshooting?
Hi All, I am curious what categories we should look at blocking to prevent users from using torrents? I have Security Risk and the Human Resources categories selected. Are there any others that we should key in on. Thanks in advance for any suggestions. Chris
Eventerviewer: Event 7011, Service Control Manager: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the DnsProxyAgent service.
I periodically get a "A timeout (30000 milliseconds) was reached while waiting for a transaction response from the DnsProxyAgent service" message in my event log. Sometimes this happens twice in a span of 36 - 39 seconds. What could be causing this? I still have DNS protection running according to dnsptest.webroot.com and I haven't really encountered many issues. I just want to reduce errors in the event viewer.
Webroot DNS Protection does gives the option to review unprotected sites. A client at work clicked on continue on an unprotected site, which later downloaded a malware that made files duplicate, had to disallow user from the Domain then next our Response and Detection System. How flexible is it to totally disallow client access to reported malicious websites?
Hello all,I saw a few other forum posts about this topic with no replies.When an offsite domain workstation connects to our VPN, all of the webroot DNS filters are overwritten and they can access any website. When disconnected from the VPN, the web filter takes effect again almost immediately.We plan to take a look on our end with the firewall, but wanted to bump this question since it seems to be a popular one and I wasn’t sure if anyone has come across a solution.Thank you!
Already have an account? Login
Login to the community
No account yet? Create an account
Enter your username or e-mail address. We'll send you an e-mail with instructions to reset your password.