Page tree

Contents

This topic includes new features and enhancements for BloxOne DDI. You can view information about other enhancements and maintenance for BloxOne products and services in the BloxOne Release Notes

BloxOne DDI – October 8, 2021

Features and Enhancements

BloxOne DDI can now receive DDNS updates from a Microsoft environment.

BloxOne DDI provides secure integration with the Microsoft ecosystem. With this release, the GSS-TSIG signed DDNS updates from Microsoft clients and servers can be processed directly by BloxOne DDI. For more information, see Configuring GSS-TSIG.

BloxOne DDI now supports DNS objects in import/export actions.

DNS objects are now included in all import/export actions. This is in addition to the DHCP and IPAM objects currently supported to simplify migrations from external sources, including third-party systems. For more information, see Importing and Exporting Data.

Upon DHCP lease renewal, the client now effectively updates the associated DNS records.

When a client renews its DHCP lease, you now have the option to configure the client to explicitly update the associated DNS records. For more information, see Enabling DDNS for IPv4 Clients.

BloxOne DDI – October 1, 2021

Features and Enhancements

Infoblox provides the ability to automate BloxOne DDI operations using Red Hat Ansible.

Ansible is now supported to automate DNS, DHCP and IPAM operations. Modules and sample playbooks are available on the Infoblox GitHub page at https://github.com/infobloxopen/bloxone-ansible. For more information, see Ansible Collections for BloxOne DDI.

You can now create IPv6 resource records in DNS Zones. 

DNS IPv6 resource records are now supported in all DNS zones, providing support for dual-stack (IPv4/IPv6) applications and clientsFor more information, see Creating a Primary Zone.

You can look up DHCP objects such as MAC addresses, networks, and host names in Global Search.

DHCP objects, such as MAC addresses, networks, and host names, are now supported in Global Search. This expands the set of objects and tags available to quickly find and take action on hosts, devices, and users throughout the enterprise. For more information, see Using Global Search.

BloxOne DDI proactively notifies third-party secondary DNS servers of any DNS updates.

BloxOne DDI now explicitly updates secondary DNS servers when DNS records are changed. This enables timely synchronization of zones for global DNS deployments. For more information, see Creating a Primary Zone.

BloxOne DDI supports upgraded DHCP options to enable automated configuration of hosts.

BloxOne DDI now supports the next-server, server-hostname, and bootp-file-name fields, as well as DHCP options 124 and 125. For more information, see Configuring DHCP Options.

When copying NIOS networks, BloxOne DDI now includes DHCP options.

BloxOne DDI offers an easy method for you to migrate DHCP networks from NIOS to BloxOne. With this change, the DHCP options associated with IP space can optionally be preserved. For more information, see Copying IP Spaces.

The Address/Name column of a subnet in the Address Block tab of DHCP/IPAM has been separated into two columns.

The Cloud Services Portal now displays the previous Address/Name column of a subnet in the Address Block tab as two columns: Address and Name. This change does not affect functionality. For more information, see Configuring Subnets.

BloxOne DDI – September 3, 2021

Features and Enhancements

Data import/export now supports the CSV file format in addition to JSON. 

You can now prepare files for object import and use spreadsheets to simplify the viewing of exported documents as well as filtering and comparison. For more information, see Importing and Exporting Data.

Infoblox now provides a software image to simplify the deployment of BloxOne on-prem hosts in Microsoft Azure Cloud. 

You can use this image to deploy the VM on Azure and use Azure tools for provisioning and deployment. For more information, see Microsoft Azure Deployment.

This release consists of DNS and DHCP service updates that will be applied to on-prem hosts running BloxOne DDI DNS and DHCP services.  


BloxOne DDI – August 12, 2021

Features and Enhancements

The Infoblox SSO Portal now supports single IdP authentication for multiple domains.    

In previous releases, the SSO Portal required a separate IdP configuration for each domain. With this release, a single IdP configuration may be specified for multiple domains. For more information, see Configuring IdP Authentication.

The former on-prem host type "BloxOne OVA" is now displayed as "BloxOne VM" on the Cloud Services Portal.    

 On the On-Prem Host page of the Cloud Services Portal, the former on-prem host type "BloxOne OVA" is now displayed as "BloxOne VM." For more information, see Viewing On-Prem Host Status.

This BloxOne release adds sub types to these on-prem host types: "BloxOne Appliance" and "BloxOne VM."    

The Cloud Services Portal now supports sub types for on-prem host types "BloxOne Appliance" and BloxOne VM," as follows:

  • BloxOne Appliance: B105
  • BloxOne VM: VMware and Azure

For more information, see Viewing On-Prem Host Status.

Infoblox supports the deployment of on-prem hosts in Microsoft Azure.    

You can now deploy on-prem hosts in Microsoft Azure using Infoblox-provided VHD packages you download from the Cloud Services Portal. Note that the DHCP service is not officially supported yet, and you cannot update network configuration through the Cloud Services Portal. For more information, see Microsoft Azure Deployment.

BloxOne now provides high-capacity OVA packages for deploying on-prem hosts.    

Depending on your business requirements, BloxOne now supports high-capacity OVA installation packages you can download from the Cloud Services Portal. For information, see Downloading BloxOne Apps.

Data Connector supports sending log messages in Common Information Model (CIM) format when you configure Splunk as the destination.    

When configuring a Data Connector traffic flow, you now have the option to choose CIM as the log message format when you configure Splunk as the destination. For information, see Setting Up Splunk as a Destination.

You can download service logs using the BloxOne API.    

This BloxOne release provides documented API for downloading service logs (such as the DNS query log and DHCP log). For more information, see https://csp.infoblox.com/apidoc.

BloxOne DDI – July 8, 2021

Enhancements

Infoblox Single Sign-On (SSO) Portal administrators will now receive email notifications on administrative events.    

This release enables email notifications to SSO portal admins on the following SSO administrative events: activation & deactivation of your IdP (Identity Provider), enabling and disabling of Multi-Factor Authentication (MFA), and creation and deletion of portal admins. For domains users, the following operations also result in an email notification: user activation & deactivation, user locking and unlocking, and the toggling of local credentials on and off.

BloxOne DDI – June 29, 2021

New Feature

BloxOne DDI supports data import and export for certain DHCP and IPAM objects.     

You can now export DHCP and IPAM objects from the Cloud Services Portal and save them as a JSON file. You can also import the objects into the Cloud Services Portal as required. This feature is limited to a maximum of 35k objects that can be imported at a time. On average, 35k objects translates to an import file of approximately 50 MB in size. For information, see Importing and Exporting Data.

BloxOne DDI – June 18, 2021

Features and Enhancements

On-prem host configuration now supports IPv4/IPv6 dual-stack networks.     

When configuring on-prem hosts, you now have the option to configure IPv4 or IPv4/IPv6 dual-stack networks. Note that DNS and DHCP services do not yet support dual-stack networks. For information, see Viewing and Modifying On-Prem Host Configuration.

You can configure MTU (Maximum Transmission Unit) and path MTU discovery to improve bulk protocol throughput.     

To avoid IP fragmentation, you now have the option to configure the MTU value when you initiate an OVA deployment. You can also enable or disable path MTU discovery during an initial deployment or after the deployment through the Device UI. For information, see ESXi OVA Deployment Using vCentervCenter OVA Deployment to ESXi Using ovftool, and Troubleshooting On-Prem Hosts.

Infoblox offers a downloadable JSON template that you can use to modify specific Bootstrap configurations and connect a physical host to the BloxOne Cloud.     

You can download a JSON template to a USB flash drive and modify specific information before using the drive to initiate new configurations on a physical on-prem host and connect it to the BloxOne Cloud. For information, see Modifying On-Prem Host Configuration Using a USB Drive.

BloxOne services provide a global search function that allows you to look up specific resources or objects.     

You can use the global search function to quickly locate BloxOne resources or objects by entering key words in the search field. Phase one of this function supports specific objects and searchable fields. For information, see Using Global Search.

BloxOne DDI – June 11, 2021

New Features

BloxOne DDI now provides an option to automatically create the next available subnets and address blocks.

To ease the creation of new networks and subnets, BloxOne DDI now supports “Get Next Available Network” and “Get Next Available Address Block”. Multiple networks and subnets can be created in one step. This feature automates the allocation of networks and IP addresses, so you can manage your network space more efficiently. For more information, see Configuring Next Available Network.

Configuring the MNAME in the DNS SOA record ensures that DDNS updates will always be sent to the correct primary name server.

The ability to configure the FQDN (fully qualified domain name) of the MNAME (primary name server) in the SOA (Start of Authority) DNS record in a zone ensures that dynamic DNS updates will always be sent to the correct primary name server. For more information, see Configuring Zone Settings Defaults

This release supports the ability to copy DNS objects between DNS views, including DNS objects from NIOS. 

The ability to copy DNS objects between views, including NIOS DNS objects, provides an easier method to migrate DNS data. For more information, see Copying DNS Zones

Enhancements have been made to DHCP vendor-encapsulated options.

You can now create multiple vendor DHCP option spaces that are independent of each other. You can create multiple option spaces to define vendor-specific options, which are encapsulated in option 43. For more information, see Configuring DHCP Options

You can configure BloxOne DDI to send alerts/notifications when DHCP HA peers change status. 

You can configure BloxOne DDI to send alerts/notifications when an HA peer changes status from Active to Passive, or if a host is down. For more information, see Creating HA Groups.

BloxOne DDI – May 18, 2021

Enhancements

You can now define notification templates that allow custom formatting based on notification severity for webhook integration.     

When setting up a custom webhook integration for notifications, you can create custom templates that will define the notification format. This is API-only functionality. For more information, see Configuring Notification Settings.

BloxOne DDI – May 14, 2021

New Features

You can now defer application restart after a configuration change to a later time to avoid service interruptions.

Application restarts caused by configuration changes can now be deferred to a later time to avoid service interruptions during normal business hours.

Configuration-generated versioning reduces downtime by creating a local version of the configuration that is compatible with the upgraded software in advance.

This automatic feature reduces service interruption downtime during upgrades by creating a local version of the configuration that is compatible with the upgraded software in advance, rather than rebuilding the configuration after the upgrade. This allows you to make configuration changes even when different versions of the on-prem hosts are running, a situation that can occur during upgrades. Compatible versions of the configuration will always be pushed to on-prem hosts, even if there are multiple versions of on-prem hosts running simultaneously.

BloxOne DDI service status is now integrated into Cloud Services Portal alerts and notifications.

The health and status of BloxOne DNS and DHCP services are now integrated into the notifications and alerts functionality within the Infoblox Cloud Services Portal, so you can be kept informed of service interruptions.

Use zone delegation to configure resource records in parent zones that will refer clients to the proper name servers for the delegated child zones. 

DNS zone delegation is now supported, so you can easily configure NS and glue resource records in parent zone to refer queriers to the proper DNS servers for delegated child zones.

BloxOne DDI – May 03, 2021

Enhancements

This release allows you to configure the DDNS Domain Name at the IP Space, Address Block, and Subnet levels.

DDNS settings are inherited from the Global DHCP Properties or DHCP Config profile. You can now override the DDNS settings at the IP Space, Address Block, and Subnet levels. 


BloxOne DDI – April 28, 2021

Enhancements

The BloxOne DDI DNS container version v3.0.5 addresses the following vulnerabilities: CVE-2021-25216, CVE-2021-25215, and CVE-2021-25214.
  • CVE-2021-25216: A second vulnerability in BIND's GSSAPI security policy negotiation could be targeted by a buffer overflow attack. This vulnerability only affected servers configured to use GSS-TSIG, most often to sign dynamic updates.
  • CVE-2021-25215: An assertion check could fail while answering queries for DNAME records that required the DNAME to be processed to resolve itself.
  • CVE-2021-25214: A broken inbound incremental zone update (IXFR) could cause the “named” process to terminate unexpectedly

BloxOne DDI – April 24, 2021

Enhancements

This release consists of DNS and DHCP application updates that are applied to on-prem hosts running BloxOne DDI DNS and DHCP services. 

This release consists of a DNS service update that includes a bug fix and a DHCP service update that upgrades the underlying DHCP software. The updates are applied to the on-prem hosts running BloxOne DDI DNS and DHCP services.

Improvements have been made to the handling of sub-option 125 within DHCP custom option spaces to allow most formats.

Previously, the DHCP server would incorrectly use the formatting statements for option 125 in the default DHCP option space when processing sub-options with a code of 125 in custom option spaces. The DHCP server has now been enhanced to allow most formats.

BloxOne DDI – April 13, 2021

New Features

BloxOne DDI adds the following new reports for DNS and DHCP: Total DNS Queries per Second (QPS) Report, Total DNS Responses Report, Total DNS Queries Report, Top DHCP Clients Report, and Total DHCP Leases Report. The reports can be filtered based on various parameters and exported to CSV format. 

The following new reports are available in the Reports menu:

Total DNS Queries per Second (QPS) Report

This report shows the DNS query rate in Queries per Second (QPS). Administrators will be able to see the average QPS load for each on-prem host over time in a tabular form. A graph also shows a sum of all averages for all the selected on-prem hosts. 

Total DNS Responses Report

This report displays the total number of DNS responses for each on-prem host broken out by response types, including “Success,” “Referral,” “NXRRSET,” “NXDOMAIN,” and “Failure”. The data is displayed over a defined time period.

Total DNS Queries Report

This is an extensive report that shows detailed information regarding each DNS query and response for each DNS server, displayed over a defined time period. The report provides the time of the query and response, the queried name, the DNS View, the device and user making the query, and more.

Top DHCP Clients Report

This report shows which DHCP clients are issuing the most requests over time. This can be very useful in identifying misbehaving clients that are sending too many DHCP requests.

Total DHCP Leases Report

Administrators can use this report to see the DHCP lease history for each on-prem host. The protocol (IPv4), lease state, leased IP address, client MAC address, valid time, and more are provided. The data is presented over a defined time period.

BloxOne DDI – April 9, 2021

Enhancements

Changes made to the “From” address for BloxOne Notifications.     

Starting April 9th, 2021, Infoblox has changed the “From” address to "donotreply@bloxone.infoblox.com" for notification e-mails that users receive. Please make sure that you add this e-mail address to your contact list, so you can continue to receive BloxOne notifications.

BloxOne DDI – April 7, 2021

New Features and Enhancements

Support for customer-provided Identity Providers using the standard SAML 2.0 interface.     

In the SSO Portal, you can now configure your Identity Provider using the standard SAML 2.0 interface. With this integration, Infoblox BloxOne products can be seamlessly integrated with your identity solution. Optionally, you can define mappings between user groups in your Identity Provider and user groups within BloxOne, which will automatically assign permissions for users within BloxOne. If this mapping is not defined, permissions can be manually set in the Cloud Services Portal. The SSO Portal integration will also provide identity information for the Infoblox Support Portal. For more information, please refer to the Infoblox SSO Portal documentation.

BloxOne DDI – March 17, 2021

Enhancements

The recycle bin now supports DHCP Fingerprints. 

DHCP Fingerprints can now be moved to the recycle bin. You can restore or permanently delete DHCP Fingerprints from the recycle bin as required.  

BloxOne DDI – March 8, 2021

Enhancements

Infoblox enhances notification settings, so you can choose to receive alerts when any of these services are down: DNS, DHCP, Data Connector, Anycast, and Authentication. 

On the Cloud Services Portal, you can configure notification settings to receive alerts when a specific service is down. You can choose individual options for any of these services: DNS, DHCP, Data Connector, Anycast, and Authentication. 

BloxOne DDI – February 22, 2021

New Features

The Cloud Services Portal provides an ability to move objects to the recycle bin and restore the objects as required. 

Objects can be deleted temporarily, restored or deleted permanently. The auto-delete settings can also be configured. When supported objects are deleted, they are now placed into a searchable Recycle Bin.  This allows administrators to easily recover objects when necessary.  Objects in the Recycle Bin are stored for a maximum of 30 days, and there is a 100,000 object limit.

On the Cloud Services Portal, you can view the current state of the Anycast configuration and the overall status of the Anycast service. In the detail panel, you can also view Anycast service status for individual on-prem host. 

 On the Anycast page of the Cloud Services Portal, the new STATE column displays the current status of your Anycast configuration. You can also view the overall status and individual status of the Anycast service configured on your on-prem hosts.

When you defer updates for on-prem hosts, you can use the "Add Schedule" feature to schedule multiple updates. You can also use tags to associate one or multiple on-prem hosts with the scheduled updates.

In the Schedule Software Updates dialog, you can use the newly added Add Schedule button to add multiple update schedules for your on-prem hosts. You can also use tags to associate one or multiple on-prem hosts with the scheduled updates.

You now have the ability to choose whether to apply configuration changes immediately to your on-prem hosts or schedule the changes during a specified timeframe. You can also use tags to associate one or multiple on-prem hosts with the scheduled configuration changes.

When you make configuration changes to your on-prem hosts, you have the choice to apply the changes immediately or schedule the changes for a specified timeframe. The configuration updates apply to all on-prem hosts to which you have assigned the tag for the scheduled changes. 

Infoblox has improved the sign-in help process to give you the specific help you need without you having to figure out what the issue is. 

When you sign in to any of the Infoblox Services, you can now click the Help me sign in link to assist you with a forgotten password, a locked account, resend of activation instructions or account suspension. This link will direct you to a dialog for you to enter your email address. When you select Send Email, Help me sign in will identify the specific help you need and send you an appropriate email to address the issue.  

BloxOne DDI – February 16, 2021

New Features and Enhancements

Infoblox has improved upon API keys with the introduction of two new types of API keys, “interactive” and “service.” API keys are the tokens used with API requests to facilitate API authentication. The new key types perform the same function for different user accounts, yet introduce improvements in lifecycle management, key expiration, and key names. 

The new key types introduce the following improvements:

  • Lifecycle management: You can now create, delete, disable, and enable keys.

  • Key expiration: A user-specified expiration can be defined at the time you create the key to determine the duration of key validity.

  • Keys names: You can name the key to easily identify it in the future.

Existing API keys, called "legacy" keys, continue to be supported, and are similar to interactive keys, yet limited to legacy and existing functionality with new support for the disable, enable, and delete functions. 

The Cloud Services Portal now retains filter configuration you have applied to a page, so you can pick up right where you left the page without spending extra time to reconfigure your filters when you access the page again.

When you apply a filter or filters to a Cloud Services Portal page, the filter configuration stays intact the next time you access the page.

BloxOne DDI – February 5, 2021

New Features and Enhancements

BloxOne DDI now provides the ability to configure DHCP High Availability in a hub-and-spoke architecture where multiple DHCP servers use a single DHCP server for redundancy. 

One DHCP Server can now be part of multiple HA groups thereby providing redundancy. A DHCP server can be Active in one or more HA groups, Passive in one or more HA groups, or service leases individually while being part of an HA group. For example, DHCP servers in multiple branch offices can use a single DHCP server in the head office for redundancy. 

When using the NIOS Grid Connector, you can copy IPAM and DHCP objects (except DHCP leases) between IP spaces within the Cloud Services Portal and from NIOS to the Cloud Services Portal.

IPAM and DHCP objects along with their child objects can be copied between IP spaces if you are using the NIOS Grid Connector. This feature allows you to copy objects with all their settings and all the child objects without having to configure them one by one. 

The TSIG Keys feature has been enhanced to provide the ability for creating it while creating DNS and DHCP objects in the Cloud Services Portal. 

TSIG Keys can now be created while creating DNS and DHCP objects. For example, you can create a new TSIG key while creating a DNS View. 

The following additional details for an on-prem host are now displayed in the right panel of the Cloud Services Portal: Uptime, Last Update time, and Component Updated. 

When viewing the status of an on-prem host on the Cloud Services Portal, you can now see more details about the host in the right panel: the time duration the host has been up and running, the timestamp of its last update, and the component that was updated.

BloxOne DDI – January 26, 2021

New Features and Enhancements

The Cloud Services Portal provides options to clear DNS cache and restart an on-prem host from the Troubleshoot menu on the Manage -> On-Prem Hosts page.

You can now clear DNS cache for an on-prem host or restart an on-prem host from the On-Prem Host -> Troubleshoot menu on the Manage ->On-Prem Hosts page of the Cloud Services Portal.

The Cloud Services Portal provides an option to select the network interface for the traceroute and traffic capture troubleshooting operations.

On the Cloud Services Portal, you can now select a specific network interface on the on-prem host for the traceroute and traffic capture troubleshooting operations from the On-Prem Host 
-> Troubleshoot menu on the Manage ->On-Prem Hosts page.

The Cloud Services Portal enhances tag management by providing the ability to reactivate previously revoked tags.

You can now reactivate a revoked tag that you deem useful again. When you reactivate a tag, the tag will associate with the objects to which it was previously assigned. The tag will also retain its original set of values.

BloxOne DDI – January 21, 2021

New Feature

Infoblox introduces support for ForgeRock as the newest 3rd party identity provider for BloxOne products using the SAML 2.0 protocol.

As the SSO administrator, you can now configure ForgeRock, in addition to Okta and Azure AD, as the 3rd party IdP using the SAML 2.0 protocol.

BloxOne DDI – December 12, 2020

New Feature

The Cloud Portal Services displays the serial number of your physical appliances (B1-105), and you can search and filter the appliances by their serial number and choose to display the information as a column on the On-Prem Host page.
    • You can search the physical appliances (B1-105) using their serial number in the Cloud Services Portal by using the Search function.
    • You can filter the physical appliances by the available serial number values.
    • You can add the serial number of their physical appliances (B1-105) as a column in the Manage -> On-Prem Hosts.

BloxOne DDI – December 4, 2020

New Features

BloxOne DDI adds the following new Dashboard Widgets that display DNS and DHCP status: DNS Status, DNS Responses, DHCP Status, and DHCP Leases per Second.

The following new Dashboard Widgets are now available in the DDI tab to display various parameters about DNS and DHCP:

DNS Status - displays the number of DNS servers that are running and available for processing requests.  

DNS Responses - displays the DNS responses. This widget also displays percentage DNS responses for Success, Failure, Referral, NXRRSET, and NXDomain.

DNS Queries per second - a cumulative total of all DNS queries per second, averaged over all available hosts for an account.

DHCP Status - displays the number of DHCP servers that are running and available for processing requests.  

DHCP Leases per Second - displays the leases per second in the network. 

You can configure DNS UDP packet size to avoid DNS fragmentation and enhance security.

Configure the size of a UDP message the DNS server advertises to other DNS servers and the maximum number of bytes the DNS server will send in the UDP response to avoid DNS messages over UDP to be truncated, which might lead to fragmentation and security issues. 

Clearing DNS cache helps remove stale or incorrect DNS data without restarting the on-prem host.

You can clear the DNS cache to remove stale or incorrect data that has accumulated over time and keep the data current. You can clear DNS cache without having to restart the on-prem host, thereby avoiding downtime. 

The Cloud-based Data Connector supports forwarding DHCP lease logs from BloxOne DDI to syslog servers.

The Cloud-based Data Connector now supports forwarding BloxOne DDI DHCP lease logs to generic syslog servers in CEF or LEEF format.

BloxOne DDI – November 13, 2020

New Features

The Cloud Services Portal provides contextual help that offers context-sensitive information about the page you are currently on.

You can access contextual help while performing tasks on a specific page of the Cloud Services Portal. The Help panel displays context-sensitive information about the features or tasks on the page you are currently on. You can also access the Infoblox Support Portal, the Community Portal, or the Documentation Portal through the Help panel. 

BloxOne DDI – October 26, 2020

New Features and Enhancements

Enhancements to the support for TSIG keys and support for DDNS update with TSIG can save administrative time and ensure consistency throughout your DDI configuration.

TSIG keys are now treated as first-order objects and may be defined once and referenced in many configurations. This saves administrative time and ensures consistency throughout your DDI configuration. Similarly, any change in a TSIG key may be made once and instantly applied to all configurations that reference that key. In addition, TSIG keys may now be used to secure DDNS updates as well. As TSIG keys may be referenced by both DNS and DHCP configurations, this enhancement allows administrators to easily enforce the usage of the same keys for DNS and DHCP for any particular zone. You can create TSIG Keys from the Manage - > Keys page of the BloxOne DDI Cloud Services Portal and apply the keys where TSIG security is used.

BloxOne DDI – October 17, 2020

New Features and Enhancements

Granular configuration of inheritance provides flexibility in configuring DHCP options for child objects.

Inherit, Override, or Block each inherited item within the DHCP Options in an object without having to apply the same settings to all items. Granular configuration of inheritance provides greater flexibility in configuring the DHCP options for child objects. The DHCP Options can either be inherited from Global DHCP Configuration or by a child object from a parent object. 

You can now view or download NIOS Grid Connector logs for import progress, errors, and import summaries.

To see the import progress, errors, and import summaries, view or download service logs from the Cloud Services Portal. NIOS Grid Connector logs are available in Administration -> Logs -> Service Logs.

Configure thresholds for DHCP utilization and receive a notification when the utilization goes above or below a certain percentage.

You can enable thresholds for DHCP utilization. This allows you to be notified if the DHCP utilization goes above or below a certain percentage. Receive notifications when the DHCP utilization goes above or below a certain percentage. You can configure a custom webhook to receive notifications. 


BloxOne DDI – September 11, 2020

New Features and Enhancements

Configuration file handling

This enhancement improves the way configuration changes made on the Cloud Services Portal are applied to the on-prem hosts. This change will require a restart of DNS and DHCP services on the on-prem hosts.

NIOS Grid Connector support for Extensible Attributes (EAs)

The Extensible Attributes in NIOS can now be mapped to BloxOne DDI tags using the NIOS Grid Connector. They are displayed with the tag nios_ea/ea_name in the Cloud Services Portal. The Extensible Attributes can be mapped for additional IPAM objects, DNS data objects, and DNS config objects. 

BloxOne DDI – August 29, 2020

New Features and Enhancements

An update to the on-prem host infrastructure for OVA and appliances allows for future enhancements in subsequent releases, optimizes update processes, improves scalability, and enhances network connectivity.

The update process will cause a short outage of up to two minutes to all services that are deployed on the specific on-prem host.

Please set the deferred upgrade functionality within BloxOne to a time when such upgrade can be performed. You can confirm with the Infoblox representative that the deferred upgrade functionality is set to a time when the outage will occur.

Only on-prem host with at least 2 cores and 2 GB RAM will be updated. If you have on-prem hosts that do not satisfy those requirements, you can upgrade them with additional resources before the upgrade to include them in this process.

This release offers multi-port support that allows you to separate traffic between WAN and LAN interfaces on configured on-prem hosts.

You can now separate traffic between WAN and LAN interfaces on configured on-prem hosts. Services can be run either on all interfaces, which is the default setting, or on the LAN interfaces only. Note that multi-port support requires the new on-prem host infrastructure.

Infoblox has added supported IPv6 addresses to the portfolio of BloxOne IP addresses.

Infoblox has added supported IPv6 addresses to the portfolio of BloxOne IP addresses. You can access the list of IP addresses to set up your corporate firewalls in advance. In the future, Infoblox services will be available over IPv6 within the designated range.

BloxOne DDI – August 5, 2020

New Features and Enhancements

Custom user roles offer administrators the flexibility to accommodate specific access authorizations by allowing more granular control of access.

As an administrator, you can define custom user roles, in addition to a selection of Infoblox provided user roles, to accommodate for specific access authorizations. This will allow for more granular control of access.

Resetting BloxOne appliances to factory condition can be done through the Device UI by enabling local access to the appliance.

You can reset BloxOne appliances to factory condition by enabling local access through the Cloud Services Portal and logging in to the on-prem host through the Device UI. The on-prem host will still be associated with the same account, but all of the service specific settings and connectivity to the cloud will be reset.

BloxOne DDI – July 27, 2020

New Features and Enhancements

3rd party identify provider (IdP) integration allows customer identity to be federated with customer owned Okta or Azure AD identity providers via the SAML 2.0 protocol.

As an administrator, when you set up the 3rd party IdP integration, you can optionally configure group mapping between IdP groups assigned to your users and BloxOne user groups. This feature completely automates the onboarding and offboarding process of your employees. You can set up 3rd party IdP federation in the newly released Infoblox SSO Portal.

Multi-factor authentication (MFA) can be defined based on OktaVerify when customers store their users' identity with Infoblox.

You can now define multi-factor authentication (MFA) based on OktaVerify when you store users’ identity with Infoblox. When configured, users are asked to define their MFA authentication at their first login and are required to authenticate using their chosen way of authentication on subsequent logins. You can set up MFA federation in the newly released Infoblox SSO Portal.

BloxOne DDI – June 30, 2020

New Features and Enhancements

DNS and DHCP data for both BloxOne and NIOS Grid is now visible on the Cloud Services Portal, if you have both BloxOne DDI and NIOS Grids in your data centers

The new NIOS Grid Connector enhancement makes NIOS DNS and DHCP data visible on the Cloud Services Portal. You can now view BloxOne DNS, BloxOne DHCP, NIOS Grid DNS, and NIOS Grid DHCP data through the Cloud Services Portal, if you have both BloxOne DDI and NIOS Grids in your data centers. 

BloxOne DDI – June 20, 2020

New Features and Enhancements

The Default IP space can now be associated with a DNS view, and the DNS associations with IP addresses are reflected in the IPAM view

This enhancement to the primary authoritative DNS functionality in BloxOne DDI allows an initial/default IP space to associate with a DNS View. DNS associations with IP addresses are now reflected in the IPAM view.

An enhancement to the primary authoritative DNS functionality enables the configuration of DDNS for zones that are managed by BloxOne DDI

This enhancement to the primary authoritative DNS functionality enables you to configure DDNS for zones that are managed by BloxOne DDI, without further manual configuration. A DHCP host may be configured to send DDNS updates to DNS hosts.

Admins can now add or remove tags for multiple objects simultaneously

This enhancement improves the admin’s ability to add or remove tags for multiple objects simultaneously. It allows users to create, update, delete, and read tags associated with any resource instance, based on their permissions. This enhancement increases admin productivity by eliminating repetitiveness and easing cumbersomeness of admin tasks.

Adjusting IP settings is now expanded to OVA on-prem hosts

You can now manage the configuration of your OVA (Open Virtualization Appliance) on-prem host via BloxOne Cloud. You can edit the settings for the IP interface, DNS local resolver, time, proxy, and Docker bridge. The ability to adjust these settings was previously limited to physical on-prem host only.

New dark color scheme on the Cloud Services Portal enhances viewing experience in low-light environments

Infoblox introduces a new dark color scheme on the Cloud Services Portal, which delivers an alternative viewing experience to users. Dark color scheme can be beneficial in low-light environments. You can switch between light mode and dark mode in User Preferences.

BloxOne DDI – May 23, 2020

New Features and Enhancements

Additional Role Based Access Control provisions to assign new roles and associated privileges/permissions to manage the DNS, DHCP and IPAM configurations

BloxOne DDI is introducing additional Role Based Access Control provisions to enable customers to have the flexibility to assign new roles and associated privileges/permissions to manage the DNS, DHCP and IPAM configurations in BloxOne DDI. These new roles will allow the customers to be more surgical in allocation of permissions in managing the DDI configurations based on the roles assigned. 

BloxOne DDI – May 9, 2020

New Features and Enhancements

DNS and DHCP statistics collected by on-prem host is sent to the Cloud for future reporting functionality

DNS and DHCP statistics that are currently being gathered on-prem will be sent to the cloud to support the addition of future reporting functionality.

Download and view DNS cache information 

This feature allows the user to download and view the contents of the DNS cache for a given on-prem host for troubleshooting purposes.

DHCP HA pairs can now be configured in an Active-Passive role 

This feature allows for DHCP HA pairs to be configured in active and passive roles, in addition to the existing active-active arrangement.  This allows for one on-prem host to serve an entire range, with another on-prem host to be standing by as a backup, should the active host be lost.

BloxOne DDI – April 21, 2020

New Features and Enhancements

New dark color scheme on the Cloud Services Portal enhances viewing experience in low-light environments

Infoblox introduces a new dark color scheme on the Cloud Services Portal, which delivers an alternative viewing experience to users. Dark color scheme can be beneficial in low-light environments. You can switch between light mode and dark mode in User Preferences. 

Automatic upgrades on the on-prem hosts ensure that your hosts are secure and contain the latest updates in functionality

Infoblox now automatically upgrades your on-prem hosts, physical or virtual, with new versions of services. This is implemented to ensure that your on-prem hosts are secure and contain the latest updates in functionality. Most of the updates happen in the background without any need to restart services or without any interference in the function of services deployed on the on-prem hosts. In some cases, there is the need for a service restart, which could interrupt those services for a few seconds. We understand that those few seconds at the wrong time of the day could affect your business. Therefore, we are adding the ability for you to schedule these updates to a specific time window during the week. The one-time update time will take into consideration the time zone set for the specific host. For example, setting an update window for Saturday from 6 to 10 a.m. would perform pending updates between 6 and 10 a.m. on Saturday CET in Berlin, EST in New York, and CST in Beijing. You can alternatively defer updates up to four weeks for the most critical times of the year.

Defining notification settings by user groups helps reduce the number of notification messages for specific users

You can now use user groups to define notification settings to reduce the number of notification messages users receive to a subset that is important to them. For example, you can configure for the administrator to receive account and host related notifications via e-mail, other users receive host and service notifications in-app only, while pager duty services could be used just for specific service notifications. You can also add additional text to e-mail notifications, for example, to identify next steps in resolution. 

Enabling multiple Cloud Data Connectors to receive data from a single NIOS Grid provides flexibility and improves performance during the transfers of log data

If you use NIOS in connection with BloxOne, you can now leverage increased scalability of the Cloud Data Connector (CDC) service. Several CDCs can be set up to receive data from a single NIOS Grid, providing increased flexibility and performance in transferring your NIOS log data.



BloxOne DDI – February 15, 2020

New Features and Enhancements

NIOS Grid Connector allows users to view DHCP and IPAM data that is configured on a NIOS Grid through the Cloud Services Portal

If you have configured NIOS Grids to communicate with BloxOne DDI, you can enable the NIOS Grid Connector service on the respective on-prem hosts to import certain IPAM data from the Grids to BloxOne DDI. You can then view the read-only IPAM data in the Cloud Services Portal, together with other network data. This capability provides you with a single interface for viewing comprehensive network data for your BloxOne Cloud infrastructure, such as global IP space, subnets, IP addresses, and DHCP lease data. This service can only be enabled on on-prem hosts running NIOS 8.5 or higher.

DNS Query/Response Logging is enabled with this release

Logging for DNS query and response is enabled by default. You can download the logs through the Cloud Services Portal. Depending on your business requirements, you can also disable logging.

Alerts and Notifications are sent when a configuration change results in an error for either DNS or DHCP

This release notifies users when a configuration change results in an error for either DNS or DHCP, as follows:

    • Host State - triggers a notification when an on-Prem host is in a Review Details state for a specified duration.
    • Last Host Activity - triggers a notification after a specific duration from the last known activity of the on-prem host.
New Service Integration with PagerDuty

You can now send notifications via PagerDuty.

BloxOne DDI – January 14, 2020

New Features and Enhancements

  • Replacing On-Prem Hosts

When you plan to replace an on-prem host with a new one, Infoblox now offers a “Replace” functionality to support zero-touch provisioning through the Cloud Services Portal. You can set up the new host and connect it to the Cloud Services Portal through zero-touch provisioning, while the old host is inactive. The replace function will automatically move the service configuration from the old host to the new one without the need to configure individual services. Services from the old host will be removed, and the host will be in the Pending state, which will require approval to rejoin the BloxOne Cloud.

  • Security Enhancement

BloxOne Cloud offers a security enhancement that allows you to disconnect problematic on-prem hosts due to misconfiguration or theft in the case of a physical host. You can disconnect the affected on-prem host from the BloxOne Cloud, which will stop all the services on the host. When you disconnect the host, it is no longer accessible from the cloud and is disconnected at the first reconnection to the internet. The on-prem host can be reconnected to the BloxOne Cloud only through a new zero-touch provisioning process, using a new token or a specific approval from the administrator in the case of a physical hosts.

  • Additional Diagnostic Tools

Infoblox has implemented additional diagnostic tools that administrators can use to get more visibility into individual on-prem hosts. Administrators can execute these tools on selected on-prem hosts and display the diagnostic results in a browser connected to the BloxOne Cloud, with the ability to download the results as well. The new diagnostic tools include the following: Traceroute, DNStest, Traffic Capture, NTP test, and the display of DNS and DHCP configuration file from the on-prem hosts.

  • Delivering RPZ Logs to On-Prem SIEMs

NIOS users who use the BloxOne Cloud can now benefit from an advanced Data Connector feature to deliver the RPZ logs to the on-prem SIEMs in CEF or LEEF format. They can also deliver the data to Splunk for reporting purposes in the CSV format.

  • Page Settings

The Cloud Services Portal now saves the last settings of a specific page, including filters and displayed columns. When you leave the page and log back in, the page will display information using the last configured filters and displayed columns. When necessary, you can reset the page configuration to default, which will remove the filters and restore to the default columns.

  • Notifications Enhancements

You can now integrate additional services, such as PageDuty and Webhooks, to receive notifications.

  • User Permissions Enhancements

This release expands user roles to include more granular permissions. For each user role, users can view all the supported permissions in the detailed panel to gain more visibility.

BloxOne DDI – December 5, 2019

Enhancement

  • User Experience Enhancement
    • This release of BloxOne Cloud introduces a modern, more dynamic, user experience. Main menus have been moved from the top of the screen to the left-hand side, where they can be expanded to show accordion-style, sub-menus or can be collapsed to display only individual icons when not in use. All workflows will remain unchanged.

BloxOne DDI – October 24, 2019

New Features

  • Automated DHCP Scope Management

The Automated DHCP Scope Management feature provides a number of enhancements to monitor and manage DHCP scopes. The feature allows you to set thresholds for DHCP ranges that will trigger configuration suggestions (e.g. proactively expanding ranges or subnets) to avoid issues associated with lack of available IP addresses.

This feature forms a basis for future enhancements in the variety and quality of configuration suggestions that the product will make using predicative algorithms and machine learning

  • Anycast Support for On-Prem DNS

This release of BloxOne Cloud introduces Anycast Synchronization Service between Anycast service and DNS service. Synchronization monitoring occurs on any DNS service to which the Anycast address is installed, enabled, or is functioning on port 53 and tied to the DNS service. In the event of co-deployment of multiple DNS services where ephemeral ports are used, connectivity is monitored between all hosts and Anycast service.

  • Coexistence of BloxOne DDI and DNS Forwarding Proxy

You can now deploy both the DNS forwarding proxy and BloxOne DDI DNS services on the same on-prem host when you have both the BloxOne Threat Defense and BloxOne DDI subscriptions.

  • DHCP Exclusion Range Support

This release of BloxOne Cloud introduces the ability to create a DHCP exclusion range within an existing DHCP range.  A DHCP exclusion range is a specified range of IP addresses residing within a DHCP range. IP addresses residing within the exclusion range are excluded from the pool of available IP addresses and are un-leasable. The DHCP server is prevented from assigning IP addresses within the exclusion range to network devices.

  • BloxOne DDI Licensing Tiers

This BloxOne DDI release introduces new licensing tiers. Each tier defines the features that are available to users. The new licensing tiers are as follows: Essentials, CA, Business, and Advanced. All existing users are converted to the CA licensing tier.

  • DHCP4 Fingerprint Enhancement

This release adds the "contains" operator for vendor class option (option 60)  in the DHCP fingerprint match rules. When you select "contains" as the operator and enter a value, BloxOne DDI matches all vendor IDs that contain the value you entered.

  • IPAM Visualization Improvement

The information panel in the IPAM view has been enhanced to display information about IP addresses that have been dynamically and statically provisioned.

BloxOne DDI – October 1, 2019

New Features

  • Role-Based Access Control

This release of BloxOne Cloud provides improved access control for customers with introduction of user groups, roles, and permissions. Assigning individual users to different user groups will change the permissions for the user. To make this process easier, Infoblox provides a set of default user groups corresponding to the "Administrator" and "User" roles, and adds new user groups for BloxOne DDI Administrators, BloxOne TD Administrators, BloxOne DDI Users, BloxOne TD Users, and Account Management. To keep existing access for users, no action is necessary. Infoblox will automatically assign existing users to the Administrators and User user groups based on their current access.

  • Troubleshooting Physical On-Prem Hosts

When an on-prem host is experiencing issues, troubleshooting problems can be accomplished using the Device UI. The Device UI displays a comprehensive view of the networking health for your on-prem host and can be used to perform corrective actions to address applicable issues.

BloxOne DDI – August 3, 2019

New Features

  • DHCP Fingerprints

This release of BloxOne DDI utilizes DHCP fingerprint detection to identify IPv4 mobile devices such as laptop computers, tablets, and smart phones, on your network. Using DHCP fingerprint detection is an efficient way to perform system identification. You can use DHCP fingerprint detection to track devices on your network and plan for future growth by accessing trending information such as the number of Apple iPhones versus that of Android phones that are on your network.

  • DNS Anycast Addressing

BloxOne DDI provides multiple Anycast IPv4 addresses to improve resiliency and reliability. In potential scenarios where one of the public IP addresses becomes unreachable in BloxOne DDI, additional configured Anycast IPv4 addresses can be added to the Anycast configuration.

  • IP Address Reservations

This release of BloxOne DDI supports IP address reservations. You can create a reservation as a static IP address for future use. You can reserve this static IP address and assign it to a client in the future.

  • Visualization of Abandoned Leases

You can now see all the abandoned leases in the visualization view.

  • Support for Multiple Primaries in DNS Server Groups

In this release of BloxOne DDI, you can include a group of primary name servers, a group of secondary name servers, nested DNS server groups, primary DNS servers, and/or secondary DNS servers in a DNS server group. This flexibility reduces the number of DNS server groups that you must manage, and it allows you to apply different configurations to different scenarios.

  • Audit Log Enhancements

You can now see the resource type of the object created, modified, or deleted when viewing the audit log. You can also limit the data displayed to only the resource type(s) you want to review.

BloxOne DDI – July 13, 2019

New Features

  • On-Prem Host Management

This release of BloxOne DDI introduces ZTP (Zero Touch Provisioning) that streamlines the deployment of on-prem hosts. You no longer need to pre-provision or create on-prem hosts and copy API keys through the Cloud Services Portal while deploying BloxOne appliances. BloxOne DDI now automatically detects the BloxOne physical appliances that you purchase through Infoblox. It also uses a secure join token mechanism to authenticate and deploy virtual appliances that you configure in your VM environments.

  • Notifications

The Cloud Services Portal displays notifications for specific events, such as license expiration or CPU usage. Infoblox implements deduplication for notifications to prevent notification floods, which identifies identical notifications and sets a grace period to stop duplicated notifications before sending them again.

BloxOne DDI – April 27, 2019

New Feature

  • Service Logs

This release introduces the support of service logs. You can now configure BloxOne DDI to display or export DNS and DHCP logs from your on-prem hosts. Depending on your service log configuration, you can view the logs in a separate browser window or download the log files (in .log format) for future reference.

BloxOne DDI – February 28, 2019

New Features

  • Support for Virtual Appliances

In addition to the BloxOne B1-105 physical appliance, you can deploy BloxOne DDI as a virtual appliance by installing the Infoblox Docker package in your Docker environment or the OVA package in your VM infrastructure.

  • Inheritance for DNS and DHCP Objects

This release supports multiple and linked inheritances for DNS and DHCP objects. DNS and DHCP properties follow a top-down inheritance hierarchy in which child objects automatically inherit properties from their parent objects by default, unless you override the properties at a child object level. The Cloud Services Portal displays the inheritance sources and values that are in effect for each DNS and DHCP object if applicable, so you can view the properties before overriding them. BloxOne DDI also links certain DNS and DHCP functions together so you can inherit or override their configurations as a group.

  • Next Available IP for Fixed Addresses

When you create a fixed address, you can configure BloxOne DDI to automatically assign the next available IP to the fixed address. The next available IP address is the first unused address in the subnet in which you configure the fixed address.

  • Using Tags

BloxOne DDI provides tags that you use to identify and group objects in your address spaces. A tag is a label that consists of a key and a value that you define. Tags are useful when you want to categorize DNS and DHCP objects by specific purposes, such as by location, so you can easily identify them based on the tags you assign to them.

  • Public API Support

The Cloud Services Portal provides a unified interface for displaying available public API calls. You can access API calls for BloxOne DDI through the Cloud Services Portal.

  • Filtering by Utilization

You can now filter IPAM objects by "Utilization" wherever applicable in the Cloud Services Portal. When you use this filtering option, you can view IP spaces by specifying the percentage of utilization you want to monitor. This filtering option allows you to identify the most utilized or the least utilized IP spaces or subnets, so you can manage your network infrastructure more effectively.

BloxOne DDI – BETA October 10, 2018

Infoblox BloxOne DDI is a cloud-managed solution which includes a fully integrated DNS (Domain Name System), DHCP (Dynamic Host Configuration Protocol), and IPAM (IP Address Management) suite with unified network views and a simplified data model. It provides a one-stop solution for your network infrastructure management, as well as secure monitoring and integrated management of your network spaces. For information about how to deploy the B1-105 appliance, refer to the Installation Guide for Trinzic B1-105 Appliance.

  • No labels

This page has no comments.