Cisco Cisco ASA 5545-X with FirePOWER Services
Cisco Systems, Inc.
www.cisco.com
1
OpenDNS Solution Guide for Cisco
Adaptive Security Appliance (ASA)
Adaptive Security Appliance (ASA)
Introduction to this Guide
As the administrator of Cisco Adaptive Security Appliance (ASA), you are able to connect to the free and fast OpenDNS
recursive DNS service which will offer you v
recursive DNS service which will offer you v
isibility into all Internet traffic originating from your ASA, and result in a faster
Internet experience for your users. If you then want to add an additional layer of DNS security to your ASA, the easy‐to‐
establish connection to OpenDNS enables you to access our free trial – which you can setup (by yourself) in less than five
minutes.
establish connection to OpenDNS enables you to access our free trial – which you can setup (by yourself) in less than five
minutes.
Using OpenDNS
OpenDNS is a leading provider of network security and DNS services, enabling the world to connect to the Internet with
confidence on any device, anywhere, anytime. The Umbrella cloud‐delivered network security service blocks command &
control callbacks, malware, and phishing from compromising systems and exfiltrating data over any port, protocol, or
app. We apply statistical models to real‐time and historical DNS data to predict domains that are likely malicious and
could be used in future attacks. OpenDNS protects all devices globally without hardware to install or software to
maintain. OpenDNS has data centers across all regions of the world to ensure that the first hop to the service is as fast as
possible.
confidence on any device, anywhere, anytime. The Umbrella cloud‐delivered network security service blocks command &
control callbacks, malware, and phishing from compromising systems and exfiltrating data over any port, protocol, or
app. We apply statistical models to real‐time and historical DNS data to predict domains that are likely malicious and
could be used in future attacks. OpenDNS protects all devices globally without hardware to install or software to
maintain. OpenDNS has data centers across all regions of the world to ensure that the first hop to the service is as fast as
possible.
This document covers how to configure the Cisco Adaptive Security Appliance (ASA) to use the OpenDNS IP addresses of
208.67.222.222 and 208.67.220.220.
208.67.222.222 and 208.67.220.220.
Additionally, if you are using a DNS forwarder as the primary DNS server for your network, this document covers how to
update Windows 2003 Server, Windows 2008 Server, Windows 2012 Server or BIND Server to use OpenDNS.
update Windows 2003 Server, Windows 2008 Server, Windows 2012 Server or BIND Server to use OpenDNS.
Once you’ve configured your Cisco infrastructure to point to OpenDNS, then you can sign up for either a free premium DNS
account or a free 14‐day trial of OpenDNS Umbrella.
account or a free 14‐day trial of OpenDNS Umbrella.
Free Premium DNS:
We offer a free, fast recursive DNS service which gives you visibility into all of your Internet traffic originating from your
ASA device.
ASA device.
https://store.opendns.com/premiumdns/?utm_source=asa&utm_medium=cisco‐partner&utm_campaign=asa‐guide‐
free‐trial‐home
free‐trial‐home
Free OpenDNS Umbrella 14‐Day Trial at:
If you want to add an additional layer of DNS security to your ASA, try our free trial – which you can set up by yourself in
less than five minutes.
less than five minutes.
https://signup.opendns.com/freetrial/?utm_source=asa&utm_medium=cisco‐partner&utm_campaign=asa‐guide‐free‐
trial#company
trial#company