Breadcrumbs

Deployment Mode

Deployment Mode

Deployment Mode applies to EnforceDNS Agent and Resolver deployments within your organization. There are two available Deployment Modes:

Protection Mode - Blocking

  • EnforceDNS will not return the malicious destination IP address from an FQDN lookup to the end user.

    • The Block Page IP will be returned if a Block Page is enabled.

    • An IP will not be returned if a Block Page is not enabled.

Inspection Mode - Non-Blocking

  • EnforceDNS will score all traffic and log details, without blocking any connections.

Determining Deployment Mode

The Deployment Mode column in the Logs view shows which mode was active when each verdict was rendered.

This allows you to easily filter and identify verdicts from blocking vs non-blocking mode.

Key Advantages

  • Global control over blocking vs non-blocking behavior

  • Flexibility to adjust mode for security vs auditing needs

  • Logs provide visibility into mode at time of each verdict

The Deployment Modes give you centralized control over EnforceDNS's blocking behavior across your deployments. Use Protection mode to enforce security policies. Use Inspection mode when auditing traffic without disruption.