In Case You Missed It
Last month's product updates can be found in November's communication.
Now Available
- Infoblox Portal:
- Scheduled Reports for Network, Security and Asset Workspaces
- Networking:
- Infoblox Universal DDI™ Management: Integration with Amazon VPC IP Address Manager (IPAM)
- NIOS DDI: NIOS 9.0.8 Adds Proxmox Support, UI Naming Updates
- Security:
- Infoblox Threat Defense™ Detection Mode: Full Policy Support
- Infoblox Threat Defense Detection Mode: For Business Cloud Customers
- Infoblox Threat Defense Detection Mode: Microsoft DNS - Early Access Program
- SOC Insights for Threat Defense: Early Access
- Infoblox Managed Rules for AWS Network Firewall
- Ecosystem:
- Palo Alto XSOAR Playbooks
- Test Connectivity for Automations
Coming Soon
- Ecosystem:
- Palo Alto Networks XSIAM (SIEM)
End-of-Life / End-of-Support Announcements
- NIOS 9.0.0-9.0.5: End-of-Life Announcement
- Infoblox Endpoint Agent: End-of-Support Announcement for Windows 10
Infoblox Portal
Scheduled Reports for Network, Security and Asset Workspaces
Now Available
With the appropriate reporting entitlements, users can create on-demand or scheduled reports across Network, Security and Asset workspaces in the Infoblox Portal. Select one or more workspaces and customize content with detailed drilldowns and data insights. Recipients receive automatic notifications when reports are ready. Manage and update schedules anytime through the centralized Scheduled Reports console. For more information, see Scheduling Reports.
NETWORKING
Infoblox Universal DDI™ Management: Integration with Amazon VPC IP Address Manager (IPAM)
Now Available
Infoblox is simplifying cross-team IP address management in hybrid cloud environments with a new integration with Amazon VPC IPAM. This integration will enable NetOps teams to assign IPv4 address blocks to Amazon VPC top-level pools from the Infoblox Portal. Meanwhile, CloudOps teams can request IPv4 address blocks directly from familiar AWS interfaces, including the AWS Management Console, AWS Command Line Interface (CLI) and AWS Software Development Kits (SDKs). The integration automatically validates IPv4 blocks for uniqueness before assigning to AWS, which prevents potential service disruptions that could be caused due to overlapping IPs across on-premises and AWS. Read the blog to learn more: Infoblox Integrates with Amazon VPC IPAM, Delivering Simplified IP Address Management.
NIOS DDI: NIOS 9.0.8 Adds Proxmox Support, UI Naming Updates
Now Available
The latest version of NIOS, NIOS 9.0.8 is now available, bringing two key changes:
- NIOS support on Proxmox: With version 9.0.8, NIOS is fully qualified for a Proximo Virtual Environment. This update gives organizations using virtualization additional choices for how they deploy NIOS, in addition to existing support on VMware, KVM and other hypervisor platforms. With this qualification, which also extends to previous releases in the NIOS 9.X software releases, customers can confidently see the performance and resiliency they expect from NIOS virtualized deployments. For more details, read the blog NIOS on Proxmox: NIOS 9.0.8 Brings More Choice for Virtualizing DDI.
- New names, same great products in NIOS UI: Customers may notice two naming updates in NIOS Grid Manager. Infoblox DNS Infrastructure Protection is the new name for Infoblox Advanced DNS Protection, or ADP, the NIOS add-on service that provides DDoS protection and DNS security for customers self-hosting external DNS on NIOS. Additionally, the name of Infoblox's real-time DNS traffic inspection and analytics solution is now displayed as Infoblox Threat Insight, instead of Threat Analytics. These naming updates do not impact the products’ features or functionality.
Quick Links for Universal DDI
Quick Links for NIOS DDI
Subscribe to the Infoblox Status Page to receive real-time notifications on maintenance upgrades.
SECURITY
Infoblox Threat Defense™ Detection Mode: Full Policy Support
Now Available
Threat Defense now supports full policy functionality in Detection Mode, enabling administrators to define and use any security policy to validate detection. This enhancement introduces two major improvements:
- Full Policy Support: All policy types, including custom lists, application filters, and category filters, are now evaluated in Detection Mode.
- Flexible Policy Definition: Administrators can now create, test and refine policies in Detection Mode before transitioning seamlessly to Enforcement Mode.
Previously, Detection Mode was limited to the Default Global Policy only, making it difficult to test custom configurations prior to deployment. With this update, administrators can define a new policy from the outset, evaluate its behavior in Detection Mode and then easily switch the mode to Enforcement for protection.
Infoblox Threat Defense Detection Mode: For Business Cloud Customers
Now Available
Threat Defense Detection Mode provides customers with the ability to monitor DNS traffic and apply detection policies without operating in inline mode. Initially, Detection Mode for Threat Defense (TD) was available only for TD Advanced. This enhancement extends Detection Mode support to TD Business Cloud, enabling broader deployment flexibility for customers with regulatory or infrastructure constraints that prevent inline operation.
Infoblox Threat Defense Detection Mode: Microsoft DNS – Early Access Program
Free Limited Preview
Microsoft DNS (MS DNS) Detection Mode enables Threat Defense to detect threats without requiring a change in the resolution path and without requiring Infoblox NIOS or Universal DDI. This enables administrators to detect threats that MS DNS missed in their environment and easily implement security analysis for environments without any prior Infoblox license or equipment while providing end-client visibility for MS-DNS Query Traffic in Threat Defense.
To learn more about the Threat Defense Detection Mode for MS DNS Early Access Program, visit the Infoblox Community.
SOC Insights for Threat Defense: Early Access
Free Limited Preview
Infoblox is releasing a limited preview of the updated SOC Insights experience to all current SOC Insights customers. It delivers an enhanced user experience and workflow, making it easier to analyze and prioritize incidents. You’ll see richer context, clearer threat attribution, and recommended actions, enabling SOC teams to better understand each insight and respond with confidence. Existing Insights setup, including any SIEM/API integrations and notifications, will remain unchanged. Early Access runs alongside your current Insights and configurations will be automatically migrated to the new experience upon general availability (early 2026). For information, see SOC Insights - Early Access.
Infoblox Managed Rules for AWS Network Firewall
Free Limited Preview
Infoblox Managed Rules for AWS Network Firewall adds predictive, DNS‑based threat intelligence to AWS, blocking malicious and high‑risk domains (phishing, C2 and data exfiltration) upstream of your workloads. Available now in public preview (Limited Preview version) via AWS Marketplace, you can enable Managed Rules directly in the AWS Network Firewall console. These curated, continuously updated Suricata-compatible rule groups become available upon subscription.
With no agents, no new infrastructure and no manual rule writing, Managed Rules make protection fast and frictionless. AWS-native logs and alerts provide teams with lightweight visibility and the confidence to know that policies are working while reducing downstream noise and operational overhead. This strengthens defense in depth at the cloud perimeter and helps security teams shift from reactive detection to preemptive protection. The preview includes a subset of Infoblox threat intelligence signals optimized for AWS Network Firewall, with the full signal set planned for GA. For more details, read the blog: Bringing Predictive Security to the AWS Network Perimeter.
Quick Links for Security
Subscribe to the Infoblox Status Page to receive real-time notifications on maintenance upgrades.
ECOSYSTEM
Ecosystem: Palo Alto XSOAR Playbooks
Now Available
Infoblox Threat Defense partnered with Palo Alto XSOAR to deliver a unified, automated approach to modern security operations. With deep network visibility and built-in analytics and orchestration, this integration enables earlier threat detection, automated event enrichment and prioritization, and faster response—all while reducing operational overhead. Leveraging Infoblox Cloud APIs, the integration enables seamless sharing of Threat Defense, DNS, DHCP, SOC Insights and security event logs with Palo Alto XSOAR. It includes a set of playbooks that allow teams to immediately leverage Infoblox to enhance visibility, streamline triage and case management, and improve threat containment and prioritization. Together, Infoblox and Palo Alto Networks are empowering security operations teams to stay ahead of evolving threats while maximizing the value of their existing security investments.
Ecosystem: Test Connectivity for Automations
Now Available
Previously, Ecosystem integration flows that displayed the connection's health status did not include Ecosystem automations, which use a script to process data before sending. Now, Infoblox will provide bi-directional connectivity status for both automation and non-automation flows. This will close a key visibility gap, giving users clear confirmation that their integrations are properly configured and connected.
Ecosystem: Palo Alto Networks XSIAM (SIEM)
Coming Soon
Infoblox and Palo Alto Networks XSIAM have partnered to streamline event logging and enhance network visibility by integrating DNS and IPAM activity. This integration will feed enriched IPAM metadata, threat intelligence and contextual insights into XSIAM for deeper correlation and search. To support this integration, a supported deployment guide is in development for configuring syslog output from Infoblox via the Cloud Data Connector (CDC) into the Palo Alto Networks SIEM environment. Once available, users can access the deployment guide with clear integration steps and assurance of integration support from the Ecosystem portal.
END-OF-LIFE / END-OF-SUPPORT
NIOS 9.0.0-9.0.5: End-of-Life Announcement
Projected Date: March 30, 2026
Reminder: Older NIOS versions (NIOS 9.0.0-NIOS 9.0.5) will reach End-of-Life (EoL) and End-of-Support (EoS) on March 30, 2026. Limited Support (investigations, troubleshooting, workarounds and fixes for critical security issues only) will continue through March 29, 2026. To maintain a secure, reliable network with the best performance and ongoing protection, Infoblox recommends upgrading to NIOS 9.0.6 or later. For more information, please visit the Infoblox Support Portal's End-of-Life Announcements and subscribe to receive product lifecycle updates by email. For planning or upgrading assistance, please contact your preferred Infoblox partner or your Infoblox account team for service options.
Infoblox Endpoint Agent: End-of-Support Announcement for Windows 10
October 14, 2025
Reminder: Microsoft announced that Windows 10 has reached the end of support as of October 14, 2025, meaning no more security patches or feature updates. Infoblox Endpoint Agent 2.5.0 will be the last version to support Windows 10; all future versions (2.6.0+) will not be compatible. Infoblox will provide limited support (troubleshooting and critical security fixes only) for Windows 10 agents until October 14, 2026. Full support will require upgrading to a supported operating system.
To maintain security, we strongly recommend migrating to Windows 11 or enrolling in Microsoft’s Extended Security Updates (ESU) program. For help with planning or upgrades, contact your preferred Infoblox partner or your Infoblox account team for service options. For more details, visit the Infoblox Support Portal.
