Protective DNS Service Description

Service Category - Network Protections

Availability - Now

The Protective DNS service enables organisations to proactively use threat Intelligence to detect and automatically block access to suspicious sources on the internet. The service utilises Response Policy Zone (RPZ) functionality to automatically provide blacklists to an agency’s DNS resolver to prevent access to suspicious sources on the internet.

Optionally, agencies can also choose to have their organisation’s DNS function managed by the Queensland Government Cyber Defence Centre (CDC) who can provide both DNS Hosting and DNS Resolution services.

The Protective DNS service is automatically enabled for agencies who utilise CITEC managed DNS servers.

Business Benefits
  • Utilising this service will assist organisations to detect and block lookups to known malicious IP addresses.
  • Provides rapid protection to emerging issues from multiple commercial, opensource and bespoke threat feeds.
  • Advanced proactive and retrospective monitoring, analysis and alerting provided by CDC’s cyber threat professionals.
  • Provides agencies an option for DNS Hosting and DNS Resolution to be managed by the CDC.
Technical Characteristics
  • Includes DNS resolution forwarders which incorporate reputational blacklists using RPZ functionality.
  • Online reporting available.
  • 24x7 monitoring and detection.
  • Dual-site redundancy, High Availability (HA) with fail-over to raw.
Government Benefits
  • Contributes to enhancing the situational awareness for whole-of-government.
  • Utilising this service will help to enable QG organisations to meet their obligations as specified under the Information security policy (IS18:2018) and improve cyber security maturity.
Eligibility and Funding

Entity Type

Eligibility

Cost

Queensland Government Agencies

Eligible

No Cost

Statutory Bodies

Eligible

No Cost

Local Government

Eligible

No Cost

Government Owned Corporation (GOC)

Eligible

No Cost

Related Services

Queensland Government (QG) Firewall -  delivers a customised firewall as a critical line of defence against external threats and hostile activity on networks.

QG Web Application Firewall (QG WAF) - safeguards your web applications from common web exploits and provides an additional layer of defence that traditional firewalls and Intrusion Prevention Systems (IPS) do not provide.

QG Intrusion Detection and Prevention Service (IDPS) - provides in-line protection that mitigates network and application layer level attacks. The key function of IDPS is to identify malicious activity, log information about the activity, block and/or stop it and report the activity.

Managed Detection and Response Service (MDR) - is a security monitoring service that monitors log feeds from across a client’s network and generates alerts for any potential incident on a near-real time basis.

Service Provisioning

Please visit the Protective DNS Service Implementation and Support resources to commence onboarding this service or contact your Qld Government Cyber Security Unit representative at CyberSecurityUnit@chde.qld.gov.au for more information.

Partnership Arrangement

The Cyber Security Unit Partnership Arrangement details the collaborative approach between the CSU and the Client to promote the uptake of Cyber Security Services with the aim of increasing the protection of the Queensland Government information systems from cyber security threats.


Last Reviewed: 10 May 2022