In Case You Missed It
Last month's product updates can be found in August’s Communication.
Now Available
- NIOS DDI: Smarter Cloud Sizing with vNIOS X6 Series Updates
- Infoblox Threat Defense™: Token-Based Licensing
- Google Cloud DNS Armor Public Review
- Ecosystem: Rapid7 Nexpose Vulnerability Scanner
Coming Soon
- Infoblox Threat Defense: Detect Mode
- Ecosystem: Google SecOps SIEM
- Ecosystem: Splunk SOAR Playbooks
End-of-Life Announcements
- NIOS 9.0.0—9.0.5: End-of-Life Announcement
NETWORKING
NIOS DDI: Smarter Cloud Sizing with vNIOS X6 Series Updates
Now Available
The latest NIOS DDI release makes it easier than ever to optimize your cloud deployments. With support for smaller cloud platforms now extended to Google Cloud’s N4 instances, alongside similar updates for AWS, Microsoft Azure and VMware, customers can take advantage of smaller, more efficient vNIOS instance sizes. NIOS 9.0.7 is fully qualified on these platforms, giving you the flexibility to scale resources to your needs while keeping costs in check and performance intact.
Quick Links for Universal DDI
Quick Links for NIOS DDI
Subscribe to the Infoblox Status Page to receive real-time notifications on maintenance upgrades.
SECURITY
Infoblox Threat Defense™: Token-Based Licensing
Now Available
Infoblox has introduced a new way to license Threat Defense: token-based licensing. This flexible model provides modular access to the protection you need, whether that’s scaling Threat Defense, adding SOC Insights, or enabling advanced tools, like Dossier or Lookalike Domain Monitoring.
With two token types—Security Tokens (for core security capabilities and add-ons) and Reporting Tokens (for log export and event forwarding)—you can easily tailor licensing to fit your environment and scale as needs change.
Learn more about how tokens work and the benefits they deliver in our latest blog post: Introducing Infoblox Tokens: Preemptive Security on Your Terms.
Contact your Infoblox Account Manager to learn more about how token-based licensing can help adapt and scale with your organization.
Google Cloud DNS Armor Public Preview
Now Available
As organizations migrate to the cloud, threat actors are increasingly targeting cloud workloads, which often contain sensitive data, intellectual property and application code. Traditional security tools typically detect threats only after they have already impacted workloads, leaving businesses exposed. Google Cloud DNS Armor, a Protective DNS (PDNS) solution powered by Infoblox, addresses this gap by securing workloads at the DNS layer. Natively integrated into the Google Cloud Console, it provides unified visibility and preemptive threat detection, helping customers stop threats before they cause harm. We announced the partnership back in April 2025 and are now excited to share that DNS Armor is available in public preview, giving Google Cloud customers early access to experience its powerful security capabilities.
Infoblox Threat Defense: Detect Mode
Coming Soon: September 27
Threat Defense (TD) Detect Mode makes it easy to demonstrate the product’s value without needing to redirect external queries to the cloud, enable logging, or deploy additional virtual machines, helping IT and network teams avoid common technical hurdles. This allows security teams to learn the value of Protective DNS practices with Threat Defense without infrastructure changes or resolution delays. Detect Mode is available on all supported Infoblox NIOS versions and works by forwarding an out of band message containing DNS response fields (not queries) to Threat Defense in the cloud for full threat detection capability. Any detected threats and context can also immediately and automatically be shared with Security teams for investigation and response by sending selected alerts to SOC tools, such as SIEM/SOAR or any other ecosystem integration.
To activate Threat Defense (TD) Detect Mode, contact your Infoblox Account Manager.
Quick Links for Security
Subscribe to the Infoblox Status Page to receive real-time notifications on maintenance upgrades.
ECOSYSTEM
Ecosystem: Rapid7 Nexpose Vulnerability Scanner
Now Available
Infoblox now offers a supported integration with Rapid7 Nexpose Network Vulnerability Scanner, allowing organizations to automatically trigger targeted vulnerability scans when high-confidence threats are detected, such as internal systems attempting to connect to known command-and-control sites or when Infoblox DDI assigns a new IP address. This integration can also ensure investigations begin with up-to-date asset and vulnerability data, automating manual scans and significantly reducing mean time to resolution (MTTR). In addition, this integration enables automatic detect and scan of any new device as soon as it receives a DHCP lease from Infoblox. No manual effort needed—your network stays continuously discovered and protected, even as new endpoints come online. A deployment guide and integration support are available directly through the Ecosystem portal.
Ecosystem: Google SecOps SIEM
Coming Soon
Infoblox has worked with Google Security Operations SIEM (SecOps) to fully update event parsing. Our partnership has produced a supported deployment guide for syslog integration with Google SecOps SIEM using the Infoblox Cloud Data Connector (CDC). This integration will enable sending Infoblox IPAM asset data, threat data and insights to the SIEM for enrichment, assessment and response. Once available, customers will be able to access the deployment guide with clear integration steps and assurance of integration support from the Ecosystem portal.
Ecosystem: Splunk SOAR Playbooks
Coming Soon
Infoblox Threat Defense is partnering with the Splunk SOAR team to develop a supported integration that will deliver a unified, automated approach to modern security operations. By combining deep network visibility with powerful analytics and orchestration, organizations can detect threats earlier, orchestrate event enrichment and prioritization, and respond in a faster and more automated way to reduce operational overhead and delay. This joint solution will enable security teams to stay ahead of evolving threats while maximizing the value of their existing investments. This integration will leverage Infoblox Cloud APIs to share Threat Defense, DNS, DHCP, SOC Insights and security event logs with Splunk SOAR and will come with a set of playbooks to immediately leverage Infoblox to enhance visibility, streamline triage and case management, and improve threat containment and prioritization.
END-OF-LIFE / END-OF-SALE
NIOS 9.0.0—9.0.5: End-of-Life Announcement
Projected Date: March 30, 2026
On March 30, 2026, older NIOS versions, NIOS 9.0.0-NIOS 9.0.5, will reach their End-of-Life (EoL) and End-of-Support (EoS) milestones. As per our published End-of-Life Guidelines and Policies, Infoblox will no longer provide updates, upgrades, code fixes or patches for these EoL releases, which include 9.0.0, 9.0.1, 9.0.2, 9.0.3, 9.0.4 and 9.0.5. Technical support and maintenance will also be discontinued. The Limited Support period for these older releases (investigations, troubleshooting, workarounds and fixes for critical security issues only) will continue through March 29, 2026. To uphold the standard of network reliability, security and service you have come to expect, Infoblox highly recommends that customers move to the fully supported NIOS 9.0.6 or later releases. For more information, please visit the Infoblox Support Portal’s End-of-Life Announcements and subscribe to receive product lifecycle updates by email. If you require planning or migration assistance, please contact your preferred Infoblox partner or your Infoblox account team for service options.
