Infoblox’s global team of threat hunters uncovers a DNS operation with the ability to bypass traditional security measures and control the Great Firewall of China. Read about “Muddling Meerkat” and the many other threat actors discovered by Infoblox Threat Intel here.

Reporting

Reply

Rogue device detection
jznygc_ag
New Member
Posts: 1

‎08-15-2022 01:41 AM

986     1

Hi,

We use InfoBlox in our organisation, primarily for DHCP functionality. I am reaching out to see if there is an option within InfoBlox to detect an unauthorized machine requesting a DHCP address? 

 

Is there any way you can run a report that can inspect the hostname and flag anything non conforming i.e first 4 characters of hostname for example?

 

Kind Regards

 

Amit

Reply
0 Kudos

Re: Rogue device detection

[ Edited ]
malman
Superuser
Posts: 81

‎10-23-2022 01:33 PM - edited ‎06-27-2023 01:16 PM

986     1

Hello, 

 

If you have Infoblox reporting solution in place, you may explore the data within ib_dhcp_lease_history index(Something like : NOT OPTION12HOST="startstring*" etc). Note that there are other indexes that you could explore too.

 

Best regards,

Reply
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Recommended for You

Latest Annoucements

Infoblox Experts Community

You have reached the maximum number of topics allowed as a visitor. Please Login or Join the community to continue to read.

Join for free

TOPICS REMAINING

Register for unlimited browsing. Registration is FREE.

Join Community